473,387 Members | 1,757 Online
Bytes | Software Development & Data Engineering Community
Post Job

Home Posts Topics Members FAQ

home > topics > asp.net > questions > 'insurance' code injection attack

Join Bytes to post your question to a community of 473,387 software developers and data experts.

'Insurance' Code injection attack

Hi All,
Does anyone know how to clean a asp application from a
virus that converts labels with the word 'Insurance' into
link button to a web page. It also injects text in the
textbox when the textbox.text has any reference to
this 'insurance' word.

I am using custom controls on custom page. This injection
seems to be occurring after the pre-render event.
Thanks in advance.

Nov 18 '05 #1
6 1292
Is it database driven? It sounds like someone made a bad mistake updating
the database.

"Sati" <an*******@discussions.microsoft.com> wrote in message
news:02****************************@phx.gbl...
Hi All,
Does anyone know how to clean a asp application from a
virus that converts labels with the word 'Insurance' into
link button to a web page. It also injects text in the
textbox when the textbox.text has any reference to
this 'insurance' word.

I am using custom controls on custom page. This injection
seems to be occurring after the pre-render event.
Thanks in advance.

Nov 18 '05 #2
"Sati" <an*******@discussions.microsoft.com> wrote in message
news:02****************************@phx.gbl...
Hi All,
Does anyone know how to clean a asp application from a
virus that converts labels with the word 'Insurance' into
link button to a web page. It also injects text in the
textbox when the textbox.text has any reference to
this 'insurance' word.

I am using custom controls on custom page. This injection
seems to be occurring after the pre-render event.


Download SpyBot S&D and perhaps even HackThis! as it sounds more like you
have a spybot of some sort active.
Nov 18 '05 #3
Thanks.. and yes, the page gets the data from SQL server
2000. And no, its not from the Database or even the Web
server. Its local to the client browser and seems to be in
the IE browser.

Even in the client machine, if we look at the html source
code, this injection code does not exist. If this is true
than I have no way of knowing how the page is getting
rendered on the client machine.

Seems like a BIG security Flaw in IE.


-----Original Message-----
Is it database driven? It sounds like someone made a bad mistake updatingthe database.

"Sati" <an*******@discussions.microsoft.com> wrote in messagenews:02****************************@phx.gbl...
Hi All,
Does anyone know how to clean a asp application from a
virus that converts labels with the word 'Insurance' into link button to a web page. It also injects text in the
textbox when the textbox.text has any reference to
this 'insurance' word.

I am using custom controls on custom page. This injection seems to be occurring after the pre-render event.
Thanks in advance.

.

Nov 18 '05 #4
"sati" <an*******@discussions.microsoft.com> wrote in message
news:0d****************************@phx.gbl...
Thanks.. and yes, the page gets the data from SQL server
2000. And no, its not from the Database or even the Web
server. Its local to the client browser and seems to be in
the IE browser.

Even in the client machine, if we look at the html source
code, this injection code does not exist. If this is true
than I have no way of knowing how the page is getting
rendered on the client machine.

Seems like a BIG security Flaw in IE.


If it is a security flaw in IE, then you seem to be the first to find it.

--
John Saunders
John.Saunders at SurfControl.com
Nov 18 '05 #5
It sounds like that machine or the proxy server has a bad version cached.

If you clear the cache and tell IE to get a new page every time does it fix
it?
"sati" <an*******@discussions.microsoft.com> wrote in message
news:0d****************************@phx.gbl...
Thanks.. and yes, the page gets the data from SQL server
2000. And no, its not from the Database or even the Web
server. Its local to the client browser and seems to be in
the IE browser.

Even in the client machine, if we look at the html source
code, this injection code does not exist. If this is true
than I have no way of knowing how the page is getting
rendered on the client machine.

Seems like a BIG security Flaw in IE.


-----Original Message-----
Is it database driven? It sounds like someone made a bad

mistake updating
the database.

"Sati" <an*******@discussions.microsoft.com> wrote in

message
news:02****************************@phx.gbl...
Hi All,
Does anyone know how to clean a asp application from a
virus that converts labels with the word 'Insurance' into link button to a web page. It also injects text in the
textbox when the textbox.text has any reference to
this 'insurance' word.

I am using custom controls on custom page. This injection seems to be occurring after the pre-render event.
Thanks in advance.

.

Nov 18 '05 #6
This is weird, it looks like the work of a smart tag installed on IE. . .
But there's no such animal?

Do you get the same behavior on all client machines? Or only some?
On the affected machines, Are there any BHO's installed?

http://www.definitivesolutions.com/bhodemon.htm

-D

"Sati" <an*******@discussions.microsoft.com> wrote in message
news:02****************************@phx.gbl...
Hi All,
Does anyone know how to clean a asp application from a
virus that converts labels with the word 'Insurance' into
link button to a web page. It also injects text in the
textbox when the textbox.text has any reference to
this 'insurance' word.

I am using custom controls on custom page. This injection
seems to be occurring after the pre-render event.
Thanks in advance.

Nov 18 '05 #7
New Post

This thread has been closed and replies have been disabled. Please start a new discussion.

Similar topics

1
'Insurance' code injection attack
by: sati | last post by:
Thanks.. Since my last post, I have identified a few more facts on this case. This code injection occurs in the client browser. The Web server seems to be sending correct page. So far, I have...
ASP.NET
5
Injection Attack
by: TCORDON | last post by:
What is the best way to protect a site against it? Does anyone have a RegEx to help validate user input? TIA!
ASP.NET
10
Preventing form injection on Classic ASP pages
by: bregent | last post by:
I've seen plenty of articles and utilities for preventing form injections for ASP.NET, but not too much for classic ASP. Are there any good input validation scripts that you use to avoid form...
ASP / Active Server Pages
4
sample validation code for sql injection attact
by: ss | last post by:
hi, can anybody gives me a sample code where the sql injection attack is validated. how can i do that in business logic layer and pass the error to the presentation tier I want the sample...
ASP.NET
0
Easy Steps to Fix "Canon Printer Won't Connect to WiFi Network"
by: taylorcarr | last post by:
A Canon printer is a smart device known for being advanced, efficient, and reliable. It is designed for home, office, and hybrid workspace use and can also be used for a variety of purposes. However,...
General
0
Merging data from multiple Excel files
by: ryjfgjl | last post by:
In our work, we often receive Excel tables with data in the same format. If we want to analyze these data, it can be difficult to analyze them because the data is spread across multiple Excel files...
Data Management
0
Migrating Website to Cloud - Emmanuel Katto
by: emmanuelkatto | last post by:
Hi All, I am Emmanuel katto from Uganda. I want to ask what challenges you've faced while migrating a website to cloud. Please let me know. Thanks! Emmanuel
General
0
BarryA
Navigating the Data Structures and Algorithms (DSA)
by: BarryA | last post by:
What are the essential steps and strategies outlined in the Data Structures and Algorithms (DSA) roadmap for aspiring data scientists? How can individuals effectively utilize this roadmap to progress...
Algorithms / Advanced Math
1
Looking to do Android software development, any suggestions? Is flutter better?
by: nemocccc | last post by:
hello, everyone, I want to develop a software for my android phone for daily needs, any suggestions?
General
1
Is that possible of reading the .csv file in column wise and the column have different lengths ?
by: Sonnysonu | last post by:
This is the data of csv file 1 2 3 1 2 3 1 2 3 1 2 3 2 3 2 3 3 the lengths should be different i have to store the data by column-wise with in the specific length. suppose the i have to...
C / C++
0
How to build RAID in BIOS?
by: Hystou | last post by:
There are some requirements for setting up RAID: 1. The motherboard and BIOS support RAID configuration. 2. The motherboard has 2 or more available SATA protocol SSD/HDD slots (including MSATA, M.2...
Computer Hardware
0
Changing the language in Windows 10
by: Hystou | last post by:
Most computers default to English, but sometimes we require a different language, especially when relocating. Forgot to request a specific language before your computer shipped? No problem! You can...
Windows Server
0
jinu1996
Maximizing Business Potential: The Nexus of Website Design and Digital Marketing
by: jinu1996 | last post by:
In today's digital age, having a compelling online presence is paramount for businesses aiming to thrive in a competitive landscape. At the heart of this digital strategy lies an intricately woven...
Online Marketing

By using Bytes.com and it's services, you agree to our Privacy Policy and Terms of Use.

To disable or enable advertisements and analytics tracking please visit the manage ads & tracking page.

BYTES.COM © 2024
About Bytes
Terms Of Use
Privacy Policy
Sitemap
Advertise on Bytes:
Post a Job
Sponsored Posts
Platinum & Gold Sponsors
Hire Now!