W3C home > Mailing lists > Public > ietf-http-wg@w3.org > July to September 2008

(issue 77) - concrete security issues

From: Amit Klein <aksecurity@gmail.com>
Date: Thu, 11 Sep 2008 22:06:49 +0200
Message-ID: <48C97A59.7090404@gmail.com>
To: ietf-http-wg@w3.org

A somewhat special case of this issue is exploitable, see 'The CRLF SP 
CRLF trick' in 
http://www.cgisecurity.com/lib/HTTP-Request-Smuggling.pdf. So I'm all in 
for eliminating this whole continuation thingy.
Received on Thursday, 11 September 2008 19:02:50 GMT

This archive was generated by hypermail 2.2.0+W3C-0.50 : Friday, 27 April 2012 06:50:54 GMT