This Article 
   
 Share 
   
 Bibliographic References 
   
 Add to: 
 
Digg
Furl
Spurl
Blink
Simpy
Google
Del.icio.us
Y!MyWeb
 
 Search 
   
The Confused Deputy and the Domain Hijacker
January/February 2008 (vol. 6 no. 1)
pp. 74-77
Dave Ahmad, Bombardier Aerospace
The author discusses a common Gmail vulnerability, cross-site request forgery. During the time a user is authenticated to an online application, such as Web mail, the user's browser can be coerced into making authenticated requests to the application on a third party's behalf. Using that, it's quite simple to hijack domains that don't belong to you.
Index Terms:
Gmail vulnerability, cross-site request forgery, domain hijacking, attacks, vulnerabilities, Gmail, Attack Trends
Citation:
Dave Ahmad, "The Confused Deputy and the Domain Hijacker," IEEE Security & Privacy, vol. 6, no. 1, pp. 74-77, Jan.-Feb. 2008, doi:10.1109/MSP.2008.25
Usage of this product signifies your acceptance of the Terms of Use.