U R Insecure – how URI exploits are changing the webappsec landscape

This article is about the recent activities and research that have been undertaken around the area of uri handler implementations in modern browsers. It is also about the tremendous security problems that were discovered as a result of that. And it is also about the ways application developers can protect their users from the raising threat.

Once upon a time…

Browsers have URI handling features for quite some time now. [...]

more | comments | comments rss | posted by