Base64 Encoded XSS | How To's, Tech Software, Utilities, Tutorials, Gadgets

web counter

Home > Uncategorized

Base64 Encoded XSS

May 29th, 2008

Goto comments Leave a comment

This is rare, but happened in real life case. There IS a live XSS out there on one of Yahoo!’s portal. And the XSS is base64 encoded. When I tried the XSS myself, I felt a little shocked because this XSS actually bypassed No-Script plugin.

Here is the Proof of Concept :

http://bbs.cn.yahoo.com/searchApplyBoard/PHNjcmlwdD5hbGVydCgiWFNTLWJ5cGFzcy1Oby1TY3JpcHQiKTwvc2NyaXB0Pg==.html

Result :

XSS on Yahoo over No-Script plugin. It’s a triple kill! I know Yahoo! is in the No-Script white-list, but I thought No-Script was supposed to be able to block this XSS anyway. Just my two cents. What do you think?

You might also intersted to these posts :

April 22, 2008 — Account Security Part III – r3ck0rd (0)
April 4, 2008 — Critical Vulnerability on ZoneAlarm.Com (0)
March 25, 2008 — UserAgent XSS (6)
March 12, 2008 — Zero Day phpBB3 Board Exploit [XSS via PM] (6)
February 16, 2008 — Massive HTML Injection Vulnerability (10)

[Read the rest on (it)gossips network: Zoiz]

Author: Gautam Categories: Uncategorized Tags:

Comments (1) Trackbacks (0) Leave a comment Trackback

r3ck0rd

July 2nd, 2008 at 21:08 | #1

Reply | Quote

All things patched

No trackbacks yet.

No Root For You – A book from Leetupload.com Something come up in mind ?