Improving Web Application Security: Threats and Countermeasures

V

validateRequest attribute, 612

validateRequest option, 275

validation, 76

controls, 632

expressions in Visual Studio .NET, 265

validation="SHA1", ASP.NET application and Web services, 570571

values, 94

view state

ASP.NET application and Web services, 569

and <pages> element, 291

protecting with MACs, 291, 569

validating, 633

ViewStateUserKey property, 292

virtual directories

checklists, 726

configuring with IIS, 332

vulnerabilities, 429

Web server configuration, 653

Web servers, 429, 453456

virtual internal methods , 617

virtual LANs. See VLANs

virtual methods, 203

viruses

application server, 478479

described, 21

Web servers, 426

visibility limitions, 617

Visual Studio. See Microsoft Visual Studio

VLANs, 416

VS.NET, 803

vulnerabilities

of assemblies, 147

assessing effects of missing patches, 751

and attacks, 423

code injection attacks, 256

defined, 5, 13, 46

identity spoofing, 257

information disclosure, 260

network eavesdropping, 259

parameter manipulation, 258

session hijacking, 256

Web sites, 685