Mailinglist Archive

Q&A with Amichai Shulman on the Critical Vulnerability in AJAX
Technology
by Mirko Zorz - HNS Chief Editor - Friday, 5 January 2007.

Recently, the Imperva Application Defense Center announced the discovery
of a critical vulnerability in DWR (Direct Web Reporting), a key
underlying technology in the AJAX web application development framework.
This client-side vulnerability can be exploited to launch Denial of
Service attacks and break into back-end servers and databases.

http://www.net-security.org/article.php?id=968