Hi, We recently had a scenario in which an iframe snippet on a server A was pointing to url on server B. There were some malwares being installed by server A on some clients. Can this iframe be the cause. As in hacker injected his url in the iframe's src. What can be the alternatives to iframe etc.
+1
A:
If a hacker is able to change the URL an iframe points to on your site then the iframe is not the problem, your code is.
Any web site could serve up malware, but you have indicated that the hacker has attacked your site and changed the src attribute of the iframe, not the site serving the iframe contents. Even if you replaced an iframe with something else the fact that an attacker has managed to get to the data behind your web site used to generate the page means that they could not limit themselves to iframes, but embed other tactics, such as a redirect, or a hidden link which is clicked by javascript or any other type of common nasty.
blowdart
2009-07-22 09:06:37
so you mean to say they got an access to server A ?
Rakesh
2009-07-22 09:13:39
Well that's what you said - (the) "hacker injected his url in the iframe's src". If, as you say, the src attribute on the iframe pointed to an attackers site then I'd look to your code
blowdart
2009-07-22 09:15:05
A:
Generally IFrame whose content comes from a different domain cannot access the DOM of the parent web site - due to cross domain scripting restrictions. There were lots of bugs involving browsers not implementing such restrictions properly, so an out-of-date client browser might be the cause.
EFraim
2009-07-22 09:06:50
A:
Unless you're running code inside of the iFrame, which you really shouldn't be, it would be a good idea to disable that iFrame from running any code.
Sneakyness
2009-07-22 10:15:50
Unsure why I was marked down, as this is extremely sound advice. He didn't mention what languages he was using so I really couldn't tell him what to do.
Sneakyness
2009-07-22 11:48:04