Spoon (JavaScript)

From Wikipedia, the free encyclopedia

You have new messages (last change).

Spoon is a self-replicating client-side JavaScript that would take advantage of unescaped HTML stored in user content to denial of service the server or hijack the users authentication to acquire privileged information. Users would typically be completely unaware that this was happening, though they may notice a decrease in performance. A client browser running the JavaScript could deluge the server with self-replicating submissions, which could in turn infect other browsers. As long as the browser window remained open, submissions would continually be sent to the server. With only a small number of browsers, this could denial of service even highly scalable systems.

Most popular around the time of The Matrix, this exploit dissipated with the rise in popular content management systems that properly escaped HTML content.

Malware logo    This malware-related article is a stub. You can help Wikipedia by expanding it.
Retrieved from "http://en.wikipedia.org../../../s/p/o/Spoon_%28JavaScript%29_58e0.html"