Post Sat Aug 11, 2007 8:27 pm

Microsoft UK events website hacked - Detailed analysis on the hack

The partner event registration page of the Microsoft UK events website,was defaced by a hacker named "rEmOtEr". He discovered and exploited a web application vulnerability in one of the parameters used by the form on the website.

The following link contains a detailed analysis of how the website was hacked and how it could have been avoided.

http://www.windowsecurity.com/articles/ ... acked.html
Manu Zacharia
MVP (Enterprise Security), ISLA-2010 (ISC)², C|EH, C|HFI, CCNA, MCP,
Certified ISO 27001:2005 Lead Auditor

[b]There are 3 roads to spoil; women, gambling & hacking. The most pleasant with women, the quickest with gambling, but the surest is hacking - c0c0n