ScriptResource.axd attack is it possible?
Question
This is code from site source genereted by firefox
<script src="/ScriptResource.axd?d=K-bZ_cYro-TWH0gbbmdTlkin59eWVsDQYopNlGtfNYd9aZQqi22u0d_A5dwpqMXbaJR99E08UDAgSF7tPCaP0mpZH35-uv4YYRWnSX0mxLsZPGu-58i2Nrmb8UHNokeftpIW9wTPOvZOJJq4cLYfu3iV8EQ1&t=634475972033675436" type="text/javascript"></script>
and in internetExploerer it is different:
<script src="/ScriptResource.axd?d=D9IFE4zJbSW6xdBnMDVoHa7cjuZLxGMz5rJdExBH42SKXYYNLX-7YyB353XNYzdNn_wv9n8ymQQJPRpsWSgxaxRNJXjxBfAjOtowaCqEOoqkTfCwaB1sP8qQsIM2egutH-T079r_BOxt__VlBgi-GyM8WHA1&t=6df0ad7a" type="text/javascript"></script>
Site behaves strange right now.
Is it possible thjat someone is making any attacks ?
1 answers
solution1
1 2011-11-11 03:21:47
The blob in the d parameter is encrypted for security reasons. It will be different on each request.
The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.
Related Question
doPostBack function issue with scriptresource.axd
Object doesn't support this property or method in ScriptResource.axd
How to merge ScriptResource.axd files in to one file inorder to improve page performance
Error in ScriptResource.axd: "Object of type 'Sys.Extended.UI.AccordionBehavior' cannot be converted to type 'Sys.UI.Behavior'
ScriptResource.axd runtime error on line var f=($telerik.isIE)?document.createElement(<iframe name='“+this.get_id()+”'>")
Ajax Authentication without DoS attack possible
Is it possible to perform a XSS attack using jQuery's .attr(“href”, value) method for <a> tags?
Is it possible to perform a XSS attack using jQuery's .attr(attributeName, value) method in the following context?
Prevent XSS attack
HTTP Parameter pollution attack
Related Tags