Web browsers are the primary interface for accessing the information on the World Wide Web. This paper examines the relative vulnerability of web browsers. More specifically, the paper explores the use of WIN32 DLLs and API calls and how the modification of the return values and out parameters of the dangerous APIs affects browser. Results suggest that the APIs and DLLs used by the four web browsers (Opera, Mozilla Firefox, Netscape Navigator, and Internet Explorer) are similar with few Exceptions. None of the more rarely used APIs have been specifically used by attackers to exploit security holes in the web browsers.
Did you find this white paper useful?
12 out of 42 users found this white paper useful
Related white papers
Balancing Security Against Productivity
What makes for great security? Is it about keeping the bad guys out or letting the good guys in? About defending attacks or preventing them? When IDG Research Services queried...
Secure Desktop On-Demand Webcast
The desktop or endpoint is one of the most vulnerable parts of your environment. Threats are everywhere. You have users who love to experiment with device settings (only to wonder...
Novell Zenworks Endpoint Security Management: Total Control from a Single Console
Still super gluing your USB ports shut? Unauthorized access to networks, lost or stolen laptops and other mobile hardware, and theft of proprietary information or intellectual property accounted for more...
Fujian Tax Bureau Tightens Information Security With HP Services
The Fujian Province Local Taxation Bureau stores confidential information of 400,000 taxpayers in the province. Any loss of information or computer failure would result in serious disruptions and damage to...
Web Applications: Identifying and Preventing Security Flaws
To help organizations proactively manage risk in the context of their overall goals of protecting information assets and business reputation, INS maintains a centralized and world-class Ethical Hacking Center of...
Symantec Managed Security Services Successfully Protects Clients From the "Slammer Worm"
Slammer exploited a six-month-old vulnerability in the Microsoft SQL Server, affecting Windows NT, 2000, and XP systems running unpatched Microsoft SQL Server 2000 and Microsoft Desktop Engine (MSDE) 2000 applications....
Wausau Financial Systems Assists Pakistan With National Identification Program
Beginning in 1998, through a special legislative ordinance from the President of Pakistan, a National Database and Registration Authority (NADRA) was established to build the national security and protection of...
