Cross-site tracing
Encyclopedia
Cross-site tracing is a network security
vulnerability exploiting the HTTP TRACE method.
XST scripts exploit ActiveX
, Flash
, or any other controls that allow executing an HTTP TRACE request. The HTTP TRACE response includes all the HTTP header
s including authentication data
and HTTP cookie
contents, which are then available to the script. In combination with cross domain access flaws in web browser
s, the exploit is able to collect the cached credentials of any web site, including those utilizing SSL
.
Network security
In the field of networking, the area of network security consists of the provisions and policies adopted by the network administrator to prevent and monitor unauthorized access, misuse, modification, or denial of the computer network and network-accessible resources...
vulnerability exploiting the HTTP TRACE method.
XST scripts exploit ActiveX
ActiveX
ActiveX is a framework for defining reusable software components in a programming language-independent way. Software applications can then be composed from one or more of these components in order to provide their functionality....
, Flash
Adobe Flash
Adobe Flash is a multimedia platform used to add animation, video, and interactivity to web pages. Flash is frequently used for advertisements, games and flash animations for broadcast...
, or any other controls that allow executing an HTTP TRACE request. The HTTP TRACE response includes all the HTTP header
Header (information technology)
In information technology, header refers to supplemental data placed at the beginning of a block of data being stored or transmitted. In data transmission, the data following the header are sometimes called the payload or body....
s including authentication data
Authentication
Authentication is the act of confirming the truth of an attribute of a datum or entity...
and HTTP cookie
HTTP cookie
A cookie, also known as an HTTP cookie, web cookie, or browser cookie, is used for an origin website to send state information to a user's browser and for the browser to return the state information to the origin site...
contents, which are then available to the script. In combination with cross domain access flaws in web browser
Web browser
A web browser is a software application for retrieving, presenting, and traversing information resources on the World Wide Web. An information resource is identified by a Uniform Resource Identifier and may be a web page, image, video, or other piece of content...
s, the exploit is able to collect the cached credentials of any web site, including those utilizing SSL
Transport Layer Security
Transport Layer Security and its predecessor, Secure Sockets Layer , are cryptographic protocols that provide communication security over the Internet...
.