A New Year means adding a new SmartAttack for Cenzic – the JavaScript Hijacking SmartAttack - making it our 96th SmartAttack! We added this support to the SmartAttack library arsenal on January 2, 2009 due to the rising number of eavesdropping attacks against AJAX-style Web applications. This vulnerability was discovered on Gmail and recently fixed. JavaScript Hijacking is an attack that tricks the victim into loading a page that contains a malicious request. The request is malicious because it inherits the identity and privileges of the victim to perform an undesired function on the victim's behalf. If an application is vulnerable, an attacker can force a logged-in victim's browser to send pre-authenticated AJAX request to a vulnerable Web application, potentially forcing the victim's browser to perform a hostile action. This allows an attacker to perform all the legitimate actions which a legitimate user can perform after a log-in. And because our development team felt extra ambitious over the holiday season, we also added enhanced support for our Web Server SmartAttack by updating it with the PHP 'imageRotate()' Uninitialized Memory Information Disclosure Vulnerability (Bugtraq ID 33002). More information about this vulnerability can be found at:
http://www.securityfocus.com/bid/33002/ To learn more details on how you can automatically update your Cenzic Hailstorm product, visit our Website.
Background on Cenzic’s SmartAttacks
Every week, Cenzic’s suite of products is updated with the latest vulnerabilities (custom, commercial, and open-source) to use when it emulates a hacker and attacks our customer’s Websites to detect their security posture. These Web application vulnerabilities include (but not limited to) cross site scripting, buffer overflow, path or directory traversal, SQL injection, HTTP response splitting, and other workflow types. by
Erin Swanson
ESwanson@cenzic.com | 
