How to avoid Ajax exploits

[polonus]

Hi malware fighters,

The use of Ajax on websites can give way to cross scripting attacks. How to avoid:
http://searchsecurity.techtarget.com/tip/0,289483,sid14_gci1215124,00.html
and here:
http://techplanetasia.com/security/index.php/article/713

Cross scripting exploits with Ajax as vector are still rare, but can be expected to become more and more widespread in the future. Keep your NoScript extension up for unknown sites or those not scanned inside the browser.

polonus

[drhayden1]

thanks for the info.polonus especially this link i found within the bottom link you posted
http://searchwebservices.techtarget.com/qna/0,289202,sid26_gci1164745,00.html

here in the us..there is a brand of ajax household cleaners..think those would help the problem?

[polonus]

Hi drhayden1,

The household "Ajax" (TM)  is not remotely related. Cross scripting can be dangerous because of an Ajax appl you can be reading your online webmail, while the malware is sending some malicious code to all your recipients, while the computer seems idle. Scary, not only that, but the webmaster that implemented  this buggy code can land in jail under recent regulations as they stand. I would not like to be in the Ajax security department.

polonus

[drhayden1]

The household "Ajax" (TM)  is not remotely related

I know that my friend polonus...but i had to do it anyway

[polonus]

That is a stickleback my friend, I had one once when I was young, in a big jar.  No but serious and not to get off-topic, these new scripting appl. and interactivity and I-frames expose us to a lot of added insecurity, while the webmasters and marketeers like to bring this in at all cost.

polonus

[drhayden1]

thank you for the additional info. my friend
have a good one avast!world