摘要: We present practical off-path TCP injection attacks for connections between current, nonbuggy browsers and Web servers. The allow Web-cache poisoning with malicious objects such as spoofed pages scripts; these can be cached a long period of time, exposing any user that cache to cross-site scripting, request forgery, phishing attacks.In contrast previous attacks, we do not require MitM capabilities or malware running on the client machine. Instead, our rely weaker assumption, only enters site, but does download install application. Our exploit subtle details HTTP specifications, features legitimate (and very common) browser implementations. An empirical evaluation techniques current versions shows most popular sites are vulnerable.We conclude this work client- server-end defenses against attacks.