Skip to main content
InfoSec aXioms
Ofer Shezaf contemplating the role & value of information security

You are here

Home
Subscribe to RSS - Improper Error Handling

Improper Error Handling

WHID 2000-2: IKEA exposes customer information on catalog site

Share/Save

Error message revealed a database file location, which could be downloaded.

Additional information:

  • IKEA exposes customer information on catalog site [CNet, Sep 6 2000]
Attack Method: 
Improper Error Handling
Insecure Direct Object Reference
Incident Outcome: 
Leakage of Information
  • Read more about WHID 2000-2: IKEA exposes customer information on catalog site
  • Add new comment

Science or Religion?

  • Risk Management
  • Research Analysis
  • Solutions Accuracy
  • Open Source
  • Patents

Further Research

  • Defining a WAF
  • Detecting Credit Card Numbers in Network Traffic
  • Secure Development Life Cycle
  • Positive Security & Learning
  • Signatures & Negative Security

Presentations

  • Analysis Of The Web Hacking Incident Database (video)
  • Pen-testing RESTful Web Services
  • WAFs in the cloud
  • Wiki Security

  • About
  • Contact
  • Legal Stuff
Copyright © 2011 Ofer Shezaf.Theme by Kiwi Drupal Themes, based on Tarski project.