|
Does Verizon's Voyager stack up to the iPhone? |
|
|
5 IT skills that won't boost your salary 
[1,407]
Women 4 times more likely than men to cough up personal info [589]
Japan's 10 funniest tech-related commercials [Videos] [407]
Throwing away a promo CD is "unauthorized distribution"? [1,265]
Adults too quick to dismiss educational video games [682]
Attack of the iPhone clones [Slideshow] [578]
10 things IT needs to know about AJAX [1,258]
This Year's 25 Geekiest 25th Anniversaries [Slideshow] [409]
|
|
Yeah, it's bad
Agreed, it's real bad. Hence the title of our talk. I think we're doing the best we can with a tough situation. I think Sun is going to have a patch available shortly after Black Hat that will give us a temporary fix, but there will just be another vector like this somewhere down the road.
Billy and I talked about taking ownership of content, or as we like to call it taking pwnership of content, last year at DEFCON. Back then, we were uploading Flash cross domain policy files in this fashion. We still have some simple attacks like that. One of the flaws we'll demo in our talk is a straight up upload of a java applet to the site. Forget GIFARs.
People need to understand the dangers of accepting user uploaded data and hosting it from the same domain as the application itself. The GIFAR stuff is interesting, but the end result is that even with that gone, this is still an issue in some cases.
-Nate