Frame injection


Frame injection

"For other uses of the term "frame injection", see Frame injection (disambiguation)."

A frame injection attack is an attack on Internet Explorer 5, Internet Explorer 6 and Internet Explorer 7 to load arbitrary code in the browser. [cite web|url=http://secunia.com/advisories/11966/ |title=Internet Explorer Frame Injection Vulnerability |work= Vulnerability Intelligence |publisher=Secunia Advisories |date= |accessdate=2008-09-13] This attack is caused Internet Explorer not checking the destination of the resulting frame, [cite web|url=http://www.microsoft.com/technet/security/bulletin/ms98-020.mspx |title=Microsoft Security Bulletin (MS98-020) |publisher=Microsoft Corporation |date= |accessdate=2008-09-13] therefore allowing arbitrary code such as Javascript or VBScript. This also happens when code gets injected through frames due to scripts not validating their input. [cite web|url=http://www.owasp.org/index.php/Cross_Frame_Scripting |title=Cross Frame Scripting - OWASP |publisher=OWASP |date= |accessdate=2008-09-13] This other type of frame injection affects all browsers and scripts that do not validate untrusted input. [cite web|url=http://secunia.com/cve_reference/CVE-2004-0719/ |archiveurl=http://web.archive.org/web/20071219181848/http://secunia.com/cve_reference/CVE-2004-0719/ |archivedate=2007-12-19 |title=Secunia Advisory|publisher=Secunia |date= |accessdate=2008-09-13]

References

External links

* [http://secunia.com/advisories/11966/ Secunia advisory]
* [http://www.microsoft.com/technet/security/bulletin/ms98-020.mspx Microsoft security bulletin]


Wikimedia Foundation. 2010.

Look at other dictionaries:

  • Frame injection (disambiguation) — Frame injection may refer to:* Frame injection A web browser vulnerability * Injection moulding A process used in the making for plastic products …   Wikipedia

  • Injection molding — (British: moulding) is a manufacturing process for producing parts from both thermoplastic and thermosetting plastic materials. Molten plastic is injected at high pressure into a mold, which is the inverse of the product s shape. After a product… …   Wikipedia

  • Lethal injection — For the Ice Cube album, see Lethal Injection (album). Part of a series on Capital punishment Issues …   Wikipedia

  • Audi Space Frame — 48.78332811.4180357Koordinaten: 48° 47′ 0″ N, 11° 25′ 5″ O …   Deutsch Wikipedia

  • Hostapd — Jouni Malinen s hostapd Infobox Software name=Jouni Malinen s hostapd latest release version = 0.5.10 latest release date = 19 February, 2008 operating system = Cross platform license = GPLv2/BSD website = [http://hostap.epitest.fi/hostapd/… …   Wikipedia

  • automobile — automobilist /aw teuh meuh bee list, moh bi list/, n. /aw teuh meuh beel , aw teuh meuh beel , aw teuh moh beel, beuhl/, n. 1. a passenger vehicle designed for operation on ordinary roads and typically having four wheels and a gasoline or diesel… …   Universalium

  • Harley-Davidson — Type Public company Traded as NYSE: HOG …   Wikipedia

  • Scooter (motorcycle) — The Vespa was the first globally popular scooter. A scooter is a motorcycle with step through frame and a platform for the operator s feet. Elements of scooter design have been present in some of the earliest motorcycles, and motorcycles… …   Wikipedia

  • Ducati V-twin motorcycles — Ducati Multistrada 90 Degree V twin motor The next new Ducati engine to appear after the Ducati Apollo was the 90°V twin, initial Grand Prix racing versions being 500 cc, and the production bikes were 750 cc. There was also the Ducati 750 Imola… …   Wikipedia

  • List of Volkswagen Group petrol engines — These petrol engines listed below are currently in use today, by various marques of automobiles, and commercial vehicles, of the Volkswagen Group (Volkswagen Aktiengesellschaft) (VWAG).Since the Volkswagen Group is European, the engine… …   Wikipedia