....
 

Guardian Digital Inc. > InfoCenter > Mailing List Archives > Web Application Security

Web Application Security Mailing List Archive

From: Peter Conrad (conrad@tivano.de)
Date: Thu Dec 16 2004 - 10:54:04 EST


Hi,

Am Mittwoch, 15. Dezember 2004 23:42 schrieb Benjamin Livshits:
>
> It looks like responseString obtained from req is forgeable and this may
> conceivably lead to a vulnerability down the line, it seems, when
> responseString is output with a call to out.print(responseString).

please explain in what way the responseString is "forgeable". Yes, it does
include all the original request headers. That's the point of a TRACE request.
out.print() will write the *body* of the response, if that's what worries you.

Bye,
        Peter

-- 
Peter Conrad                        Tel: +49 6102 / 80 99 072
[ t]ivano Software GmbH             Fax: +49 6102 / 80 99 071
Bahnhofstr. 18                      http://www.tivano.de/
63263 Neu-Isenburg
Germany


[ About Guardian Digital ] - [ Press Center ] - [ Contact Us ] - [ System Activation ] - [ Reseller Info ] - [ Online Store ] - [ Site Map ]
Copyright (c) 2000 - 2004 Guardian Digital, Inc. Linux Lockbox and EnGarde are Trademarks of Guardian Digital, Inc.