CCNA Certification Study Guide by Todd Lammle

Author:Todd Lammle
Language: eng
Format: epub
ISBN: 9781119660200
Publisher: Wiley
Published: 2020-01-14T16:00:00+00:00

HTML Attacks

Another new attack on the Internet scene exploits several new technologies: the Hypertext Markup Language (HTML) specification, web browser functionality, and HTTP.

HTML attacks can include Java applets and ActiveX controls, and their modus operandi is to pass destructive programs across the network and load them through a user’s browser.

Microsoft promotes an Authenticode technology for ActiveX. Only, it doesn’t do much except to provide a false sense of security to users. This is because attackers can use a properly signed and totally bug-free ActiveX control to create a Trojan horse!

This particular approach is unique because it’s teamwork—the attacker and you. Part one of this attack—the bad guy’s part—is to modify a program and set it up so that you, the user, actually initiate the attack when you either start the program or choose a function within it. And these attacks aren’t hardware dependent. They’re very flexible because of the portability of the programs.

Download

Copyright Disclaimer:
This site does not store any files on its server. We only index and link to content provided by other sites. Please contact the content providers to delete copyright contents if any and email us, we'll remove relevant links or contents immediately.