Access and Feeds
blog-alfresco

The most popular and comprehensive Open Source ECM platform

Let us know more

Web site scanning for vulnerabilities

Home Content Management Web site scanning for vulnerabilities

By Dick Weisinger

By one estimate more than 50-60% of all Web applications and web sites contain some critical vulnerability that can be easily compromised. Using SSL, firewalls and locked-down servers can lead to a sense of security, but none of these things address the issue of web application hacking — attacks made through ports 80 and 443.

Database-driven dynamic content is clearly the main area of vulnerability. Any web app that operates dynamically based on user input has the potential to be compromised by maliciously altering the data communicated to the server.

Web Security

Two common types of vulnerabilities are called SQL Injection and Cross Site Scripting (XSS).  SQL injection is the ability to inject and run arbitrary SQL code without having standard database access.   XSS means to forcibly insert html or script into another web page.

Scanning software is now available that can automatically exercise pages of a web application, looking for potential vulnerabilities. 

Whitehat security has a good set of slides describing web application vulnerability issues.  It discusses limitations of today’s web scanning software.  The current generation of software is really only good at looking at technical vulnerabilities.  There is another realm of logical vulnerability issues not addressed.  And then there is a big hurdle for being able to identify and load scenarios into the web scan software so it knows how to access all or most pages of the application.

Given these limitations, it still seems like web scanning software is a huge step forward to identify vulnerabilities.  At Formtek, our development and engineering groups have used a couple of these Web Scan products: WatchFire and Acunetix.

We were basically pleased with the results.  Working with our QA people, we identified scenarios that do thorough coverage of our app web pages.  With the scenarios in place, we then pointed the scanners to our web-based apps.  The reports that were generated were very detailed.  They also alerted us to some things we had never considered.  I’d recommend the use of the web scanning tools.

Based on our findings, the Formtek | Orion version 4.4.1.10 patch was created.  Re-running the scan tools against this version of Orion came up clean.  Going forward, we plan to make the use of a web application scanner a standard part of the Formtek QA test cycle.

Digg This
Reddit This
Stumble Now!
Buzz This
Vote on DZone
Share on Facebook
Bookmark this on Delicious
Kick It on DotNetKicks.com
Shout it
Share on LinkedIn
Bookmark this on Technorati
Post on Twitter
Google Buzz (aka. Google Reader)
February 10th, 2006
Category: Content Management, Security
1 Comment
One comment on “Web site scanning for vulnerabilities
  1. Holly Hooper says:
    December 17, 2021 at 4:17 am

    Hi there colleagues, nice article and good urging commented at this place, I am actually enjoying by these.

    Reply
1 Pings/Trackbacks for "Web site scanning for vulnerabilities"
  1. Security Weaknesses: The Many Ways to Hack Software | Formtek Blog says:
    January 31, 2020 at 7:00 am

    […] years, SQL Injection ranked as the most common and exploited software vulnerability. With the new ranking, it has […]

Leave a Reply

Your email address will not be published. Required fields are marked *

*

  • Legal Terms & Disclaimers

    This blog site is accessed from the website of Formtek, Inc. All visitors to or users of this blog site are subject to the terms and conditions and privacy policy that govern the Formtek website, links for which are provided above.

    Some of the individuals posting to this blog site, including the moderators, work for Formtek. Postings by these individuals are the personal opinions of these individuals, not of Formtek. Their posted content is provided for informational purposes only and is not meant to be an endorsement or representation by Formtek or any other party. Postings to this blog site may be outdated, invalid or inaccurate by the time you read them. Individuals posting to this blog site make no statements, representations or warranties as to the timing, validity, accuracy or reliability of their postings.

    This blog site may contain links to third party sites. Access to any third party site linked to this blog site is at your own risk. None of Formtek, the blog site moderator(s) and the individuals posting on this blog site that work for Formtek is responsible for the timing, validity, accuracy or reliability of any information, data, opinions, advice or statements made on these third party sites. These links are provided merely as a convenience and do not imply any endorsement.

    Postings to this blog site are available to the public. You should not post, link to or otherwise upload any information considered confidential to this blog site. All postings to this blog site are moderated. Postings will appear if and when they are approved by the moderator. Notwithstanding any approval by the moderator, by posting information to this blog site, you agree to be solely responsible for the information you post, link to, or otherwise upload to the blog site. You agree to release Formtek from any liability related to that information or to your use of the blog site. You grant Formtek a worldwide, perpetual, irrevocable, royalty-free, fully-paid, and transferable (including rights to sublicense) right to exercise all copyright, publicity, and moral rights with respect to any information you post, link to or otherwise upload to this blog site.

    • © Copyright 2003-2024   Formtek, Inc.