shadowbane's tags:
shadowbane's most popular posts:
shadowbane reads (1):
Who's reading shadowbane (0):
  • Currently, no one

XSS Worm strikes GaiaOnline

shadowbane posted on Jan 20, 2009 | views: 32 | Tags: video
XSS Worm strikes GaiaOnline

January 4th, 2007 by Sid, Filed under: Web, Commentary, Full Disclosure, Corporate Security

video:Sell WoW account sell wow account safely sell warcraft account
TAGS:Gaia Gold Lineage 2 adena dofus kamas

GaiaOnline is a highly popular web based game, a perfect target for an XSS worm. Exactly what Kyran sets out to do, with a little help from Kuza. I’ll be writing about his worm, why it’s so special, the results he’s collected and the response from GaiaOnline.

Normally when you consider an XSS worm, such as the infamous Samy worm, or lesser known IPB ones the one thing they have in common is how they spread. They abuse a filter flaw to store itself in some permanent storage system such as the users profile or the users sugnature. This worm differs in that it uses only reflective XSS holes.

A reflective XSS hole is one where the input you provided is not permanent but is only printed onto the page because it was one of your input variables, usually via GET or POST, in this case POST.

Back to the worm, Kyran was not interested in causing havoc, this worm is merely an experiment to see how much a non-permanent worm can spread on a site reach of 40% (source). First I’ll give you the logging script used.

The following video was made by playerassist

From:http://www.playerassist.com



send to a friend del.icio.us Digg reddit StumbleUpon

Comment on "XSS Worm strikes GaiaOnline"

video (Click to add tags below)

(Separate tags using commas, for example: New York, dating, vegetarian)
Comment Anonymously

The Meaning of love..

LonelyWanderer posted on Oct 27, 2009 | views: 93 | Tags: love, video, Happiness, Sharing
My friend showed me a beautiful clip on You Tube yesterday..it's so lovely that I just had to share it with all of you.. :)... read entire post 6 comments

How does this make you feel..

LonelyWanderer posted on Oct 29, 2009 | views: 45 | Tags: Sharing, thoughts, question, love, video
Doesn't this just make you shiver?!... read entire post 1 comments

How to rip music off youtube video?

desertfish posted on Oct 28, 2009 | views: 21 | Tags: youtube, video, swf2video, converter
Do you like to put some sweet music to your mp3 player. Here you can learn how to rip music off youtube videos.... read entire post 0 comments

RABBIT ATTACKS SNAKE

BELOW_TOP_SECRET posted 7 days ago | views: 92 | Tags: video
The snake had killed the snaks pal. Then reveng came!

http://www.funnymos.com/killer-rabbit--attack-snake.html

wild!... read entire post 0 comments