Cross Application Scripting – All you KDE are belong to US : BackTrack Linux – Penetration Testing Distribution



Cross Application Scripting – All you KDE are belong to US

Emgent of the BackTrack team has released some fascinating information about a new attack vector called “Cross application Scripting”.

Cross Application Scripting (CAS) is a vulnerability affecting desktop applications that don’t check input in an exhaustive way. CAS allows an attacker to insert some code to edit the contents of certain desktop application. This way it is possible to extract sensitive data from inside of the users’ systems. Attacks for CAS vulnerabilities may have very dire consequences as they could imply a complete compromise of the targets – independent from their operating system or platform.





twitter
Infected Mushroom
bt5