[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[Full-disclosure] Java Applets can connect to other hosts using HTTP 302 redirection

To: full-disclosure@xxxxxxxxxxxxxxxxx
Subject: [Full-disclosure] Java Applets can connect to other hosts using HTTP 302 redirection
From: Kanatoko <anvil@xxxxxxxxxxx>
Date: Wed, 03 Oct 2007 11:28:40 +0900

It seems that the java applet located on the host A is allowed to
connect to the host B using HTTP 302 redirection on the host B.

Is it a normal behaviour?

PoC:
http://www.jumperz.net/exploits/appletTest1.jsp

host A: www.gyosatu.com
host B: www.jumperz.net

In this PoC, the java applet is downloaded from www.gyosatu.com and
connects to www.jumperz.net port 1111.

Use "tcpdump port 1111" to see the packets.

-- 
Kanatoko<anvil@xxxxxxxxxxx>
Open Source WebAppFirewall
http://guardian.jumperz.net/

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

Prev by Date: [Full-disclosure] rPSA-2007-0203-1 rmake rmake-proxy rmake-repos
Next by Date: [Full-disclosure] [SECURITY] [DSA 1381-1] New Linux 2.6.18 packages fix several vulnerabilities
Previous by thread: [Full-disclosure] rPSA-2007-0203-1 rmake rmake-proxy rmake-repos
Next by thread: Re: [Full-disclosure] Java Applets can connect to other hosts using HTTP 302 redirection
Index(es):
- Date
- Thread