Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email firstname.lastname@example.org
From: Jeremiah Grossman (jeremiahwhitehatsec.com)
Date: Sat Mar 16 2002 - 12:14:31 CST
The implications are very simple. With XSS, one can control a target users
browser to make it do whatever they want it to do.
From here, if one can exploit a browser vulnerability, they can control the
users machine to do whatever it is they want it to do.
The rest is how you want to use this kind of access.
Cookie theft and location forwarding are just some possible repercussions.
> Hi all,
> I'm working on a CSS paper, and I was wondering, what are the real
> implications of a CSS attack. When some site is vuln to a CSS problem,
> you're able to execute code on the web. I've thought about the implications
> of this. First of all:
> - You can steal cookies from users
> - You can send bogus links faking the original site: i.e