Follow us on Twitter!
Imagination is more valuable than knowledge - Albert Einstein
Wednesday, April 16, 2014
Navigation
Home
HellBoundHackers Main:
HellBoundHackers Find:
HellBoundHackers Information:
Learn
Communicate
Submit
Shop
Challenges
HellBoundHackers Exploit:
HellBoundHackers Programming:
HellBoundHackers Think:
HellBoundHackers Track:
HellBoundHackers Patch:
HellBoundHackers Other:
HellBoundHackers Need Help?
Other
Members Online
Total Online: 13
Guests Online: 13
Members Online: 0

Registered Members: 82800
Newest Member: santana1744
Latest Articles
View Thread

HellBound Hackers | Computer General | Web hacking

Author

User agent code injection


Member

Your avatar

Posts:
Location:
Joined: 01.01.70
Rank:
Guest
Posted on 04-03-11 05:06
I remember reading a post a while back about injecting code through your user agent, but the OP wasn't sure how, and the other day I realized a lot of sites that tell you your IP address also tell you your browser name.
As it turns out, most of the sites I checked executed the script I put in the user agent string.
Amusingly, when I searched for sites that detect what browser you're using, they mostly seemed pretty well sanitized, which seemed a bit backwards...
Does anyone know if this is the only place this could be useful (if that even qualifies as useful), or does code injection through a user agent have any real applications?
Author

RE: User agent code injection

ADIGA
Member



Posts: 57
Location: Jordan - Middle East
Joined: 28.12.07
Rank:
Mad User
Posted on 04-03-11 14:19
User agent injection can be used in 2 places mainly...
1- if the webpage or script stores data into a database.
2- if some logs ae kept in html format or stored in a file the displayed in an html page.

the best thing in order to check if a scripts does not handle that very good is to download the script source and check what kind of filtering and storing it does with the user agent.

also another good thing that some devs miss filtering is refferer, as some scripts do store what pages or urls sent you to the website.

as said before, download the script and see what filtering applies.


www.hackthis.co.uk/users/images/210/1:1/50/56ba5115dde42ff71f426149a02fc0b8.jpg
adiga_php@hotmail.com adiga.hacker@yahoo.com www.adiga.ws