SAP: Session (Fixation) Attacks and Protections - Black Hat
SAP: Session (Fixation) Attacks and Protections - Black Hat
SAP: Session (Fixation) Attacks and Protections - Black Hat
- No tags were found...
Create successful ePaper yourself
Turn your PDF publications into a flip-book with our unique Google optimized e-Paper software.
Three Case Studies• From real-world penetration tests– Past two years: 2009-2010– Three different session fixation vulnerabilitieson three separate target web environments• How they were discovered & exploited• Real impact• Vulnerability disclosure timeline• <strong>Protections</strong>Copyright © 2011 Taddong S.L. www.taddong.com25