Hello Ed, To give some details:
I am unable to re-produce a CSRF attack when the victim is using a I.E. 6.01 SP1 (all patches applied). However the attack works in Mozilla and other older browsers. I can't give you the exact code for attack (for security reasons), but it is similar to the following: If you insert the following HTML code in "any" web page residing at any domain, it will cause you to be logged out of /. if you previously logged in the /. system: <img src="http://slashdot.org/my/logout"; height="1" width="1"> This type of attack makes use of CSRF. Try to insert the above HTML line a web page of your choice, and then load the web page. If you are using Mozilla, it will log you off from /. However in the latest build of I.E. it doesn't work, whereas it should work. Thanks. Saqib Ali http://validate.sf.net <<< XHTML/DocBook XML Validator and Transformer "Ed Lazor" <[EMAIL PROTECTED]> No Phone Info Available 08/16/2004 02:26 PM To <[EMAIL PROTECTED]> cc Subject RE: [PHP] CSRF attack not possible in I.E. 6.01 SP1? > -----Original Message----- > So now I am completely clueless as to why this particular attacks works in > Mozilla but not in IE. Could you describe the problem again and give full detail? I think we need to better model the problem in order to present a more effective solution. The link below goes to a page I found that describes CSRF a little differently than what Chris was presenting - to give a different perspective on things. http://www.squarefree.com/securitytips/web-developers.html -Ed -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php
