1 / 1

Understanding Prototype Pollution

Centextech
Download Presentation

Understanding Prototype Pollution

An Image/Link below is provided (as is) to download presentation Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author. Content is provided to you AS IS for your information and personal use only. Download presentation by click this link. While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server. During download, if you can't get a presentation, the file might be deleted by the publisher.

E N D

Presentation Transcript

  1. Understanding Prototype Pollution Prototype Pollution is a vulnerability which allows attackers to exploit JavaScript programming language. Due to this vulnerability, attackers are able to inject properties into existing JavaScript language construct prototypes such as Objects. JavaScript allows all Objects to be altered including attributes such as _proto_, constructor, and prototype. Attacker can manipulate these attributes to overwrite Objects prototype of JavaScript application by injecting altered values. The altered properties are inherited by all JavaScript Objects through the prototype chain resulting in Denial of Service, Remote Code Execution or XSS. www.centextech.com Centex Technologies 1201 Peachtree St NE, Suite 200, Atlanta, GA 30361 7600 Chevy Chase Drive, Suite 300, Austin, TX 78752 13355 Noel Road, Suite # 1100, Dallas, TX 75240 501 N. 4th Street, Killeen, TX 76541 Phone: (404) 994 - 5074 Phone: (512) 956 - 5454 Phone: (972) 375 - 9654 Phone: (254) 213 - 4740 Image Source: Designed by Freepik

More Related