http://www.casaba.com/blog Building and breaking software and robots Wed, 11 Jan 2012 18:08:45 +0000 en hourly 1 http://wordpress.org/?v=3.3.1 http://www.casaba.com/blog/2008/09/unicode-formatter-characters-lead-to-cross-site-scripting-in-popular-browsers/ http://www.casaba.com/blog/2008/09/unicode-formatter-characters-lead-to-cross-site-scripting-in-popular-browsers/#comments Fri, 05 Sep 2008 21:25:41 +0000 Chris Weber I'll be discussing some of the issues recently reported to Opera, Apple, and Mozilla at the 32nd Unicode Conference in San Jose next week. We discovered some issues with the way certain Unicode characters could be leveraged to enable cross-site scripting attacks in popular web browsers (aka User-Agents). These issues involve utilizing Unicode characters in ways which might bypass most filters, IPS, and IDS systems.

]]> http://www.casaba.com/blog/2008/09/unicode-formatter-characters-lead-to-cross-site-scripting-in-popular-browsers/feed/ 0