busting-frame-busting-a-study-of-clickjacking-vulnerabilities-on-popular-sites-slides
busting-frame-busting-a-study-of-clickjacking-vulnerabilities-on-popular-sites-slides
busting-frame-busting-a-study-of-clickjacking-vulnerabilities-on-popular-sites-slides
Create successful ePaper yourself
Turn your PDF publications into a flip-book with our unique Google optimized e-Paper software.
Locati<strong>on</strong> Clobbering<br />
if (top.locati<strong>on</strong> != self.locati<strong>on</strong>) {<br />
}<br />
top.locati<strong>on</strong> = self.locati<strong>on</strong>;<br />
If top.locati<strong>on</strong> can be changed or<br />
disabled this code is useless.<br />
But our trusted browser would never let<br />
such atrocities happen… right?