October 10, 2008

Cenzic Updates 3 SmartAttacks Including CSRF

Cenzic provides enhanced support for their CSRF, Session Fixation, and Web Server Vulnerabilities SmartAttacks

In this week’s SmartAttack release, Cenzic Cenzic’s SmartAttack arsenal now has enhanced support for:

Cross Site Request Forgery (CSRF),
Session Fixation, and
Web Server Vulnerabilities SmartAttack
- PHP FastCGI Module File Extension Denial Of Service Vulnerabilities (BugtraqID 31612)

To learn more details on how you can automatically update your Cenzic Hailstorm product, visit our Website.

Background on Cenzic’s SmartAttacks
Every week, Cenzic’s suite of products is updated with the latest vulnerabilities (custom, commercial, and open-source) to use when it emulates a hacker and attacks our customer’s Websites to detect their security posture. These Web application vulnerabilities include (but not limited to) cross site scripting, buffer overflow, path or directory traversal, SQL injection, HTTP response splitting, and other workflow types.

by
Erin Swanson
ESwanson@cenzic.com


	PHP FastCGI Module File Extension Denial Of Service Vulnerabilities
	BugtraqID 31612 for Oct 10, 2008
	http://www.cenzic.com/lib-updates/5.7o.php

	Cenzic SmartAttack Library Updates
	Weekly updates made to Cenzic's product suite
	http://www.cenzic.com/cia_research/lib-updates.php

Topic Tags: cenzic, csrf

by Erin Swanson

↑top

link to this

Post a Comment

Title:

Summary:

Comment:

Links:

Your info:

Name:		Required; will be displayed with comment.
E-mail:		Required (in case we need to contact you); will NOT be displayed with comment.
Web:		Optional; will use to hyperlink your name in the comment.
Twitter:		Optional; allows visitors to follow you on Twitter.
Save this in my browser

Verification:

Type the characters you see in the picture above.

Letters are case sensitive.

Notice: Your thoughtful opinions are valued and encouraged, but all comments are moderated so there will be a delay between the time you post your comment and when it appears in this site. Please don't be offended if your comment is edited for clarity or to avoid questionable matters. Offensive or off-topic comments will be deleted.