It's (DOM) Clobbering Time: Attack Techniques, Prevalence, and Defenses

DOM Clobbering is a type of code-less injection attack where attackers insert a piece of non-script, seemingly benign HTML markup into a webpage and transform it to executable code by exploiting the unforeseen interactions between JavaScript code and the runtime environment. The attack techniques, b...

Full description

Saved in:
Bibliographic Details
Published in:Proceedings - IEEE Symposium on Security and Privacy pp. 1041 - 1058
Main Authors: Khodayari, Soheil, Pellegrino, Giancarlo
Format: Conference Proceeding
Language:English
Published: IEEE 01.05.2023
Subjects:
Attack Techniques
Codes
Defenses
DOM Clobbering
HTML
Prevalence
Robustness
Runtime environment
Surveys
Taxonomy
Transforms
ISSN:2375-1207
Online Access:Get full text
Tags: Add Tag
No Tags, Be the first to tag this record!
Be the first to leave a comment!
You must be logged in first