Abstract
A Ruby on Rails app highlights some serious, yet easily avoided, security vulnerabilities.
Index Terms
- Weapons of mass assignment
Recommendations
Weapons of Mass Assignment: A Ruby on Rails app highlights some serious, yet easily avoided, security vulnerabilities.
Programming LanguagesIn May 2010, during a news cycle dominated by users’ widespread disgust with Facebook privacy policies, a team of four students from New York University published a request for $10,000 in donations to build a privacy-aware Facebook alternative. The ...
Using 3D printers as weapons
Additive manufacturing, also known as 3D printing, is a transformative manufacturing technology that will play a significant role in the critical manufacturing sector. Industrial-grade 3D printers are increasingly used to produce functional parts for ...
Off-Path TCP Exploits of the Mixed IPID Assignment
CCS '20: Proceedings of the 2020 ACM SIGSAC Conference on Computer and Communications SecurityIn this paper, we uncover a new off-path TCP hijacking attack that can be used to terminate victim TCP connections or inject forged data into victim TCP connections by manipulating the new mixed IPID assignment method, which is widely used in Linux ...
Comments