Your SlideShare is downloading. ×
0
Business Logic
Vulnerabilities in application-specific features.
Examples
Rounding Errors
Number Conversions
Rounding Errors
You can see how the type-less systems such as those found in
Python, Ruby, Perl, JavaScript and other coul...
Number Conversions
Small numbers can be represented in more than one way.
print 0.0005
print 5e-4
Lab
Let's discover some business logic flaws.
Upcoming SlideShare
Loading in...5
×

Web Application Security 101 - 13 Business Logic

64

Published on

In part 13 of Web Application Security 101 we cover various business logic security vulnerabilities that effect modern web applications.

Published in: Software
0 Comments
0 Likes
Statistics
Notes
  • Be the first to comment

  • Be the first to like this

No Downloads
Views
Total Views
64
On Slideshare
0
From Embeds
0
Number of Embeds
0
Actions
Shares
0
Downloads
6
Comments
0
Likes
0
Embeds 0
No embeds

No notes for slide

Transcript of "Web Application Security 101 - 13 Business Logic"

  1. 1. Business Logic Vulnerabilities in application-specific features.
  2. 2. Examples Rounding Errors Number Conversions
  3. 3. Rounding Errors You can see how the type-less systems such as those found in Python, Ruby, Perl, JavaScript and other could result into a rounding error. print 4000/5000 print 4000.0/5000 print round(4000/5000) print round(4000.0/5000)
  4. 4. Number Conversions Small numbers can be represented in more than one way. print 0.0005 print 5e-4
  5. 5. Lab Let's discover some business logic flaws.
  1. A particular slide catching your eye?

    Clipping is a handy way to collect important slides you want to go back to later.

×