GlobalSupervision: Marcus Brinkmann, Robert Merget, Juraj Somorovsky Start date: sofort More details:
In typical web scenarios, a web browser communicates with an HTTP server. The features implemented in the browser and a web server allow the communication partners to exchange sensitive data. For example, the cookies are secured with specific security flags or the requests are secured with CORS. However, what happens if the browser is redirected to an SMTP or an FTP server and unknowingly sends them confidential HTTP data?
Example of a vulnerability: http://bugs.proftpd.org/show_bug.cgi?id=4143
This work can be performed as a bachelor or a master thesis.
Erfolgreicher Abschluss der Vorlesung Netzsicherheit 2. Erfolgreicher Abschluss vom Hackerpraktikum oder praktische Erfahrungen zu XSS.