CSE 127 Lecture Notes - Lecture 14: Samy Kamkar, United States Secret Service, Phpbb

Opens window and calls steal. cgi on evil. com. Samy kamkar found a way to bypass existing checks and inject js onto his myspace page. If i can become their friendthen why can"t their friends become my friend . Kamkar was raided by the us secret service. Plead guilty to felony charge in the la superior court. Key problem: rendering raw html from user input. Can"t tell the difference between code & data! Preventing injection of scripts into html is hard! Blocking < and > is not enough. Phpbb allowed only simple html tags like but . Any user input must be preprocessed before it is used inside html. Cookie sent over http(s), but cannot be accessed by script via document. cookie . When a user"s browser issues an http get request, it attaches all cookies from the target site. Site does not know why you are visiting that site.