CRM 2011 and The Open Web Application Security Projects

(0) Share

Report

Posted on by Wani

Has anyone analyse CRM 2011 on premise if it has a top 10 risks define by the OWASP project? Could you please share me some useful information? I will be very appreciated.

The top 10 are:

A1 – Injection

A2 – Broken Authentication and Session Management

A3 – Cross-Site Scripting (XSS)

A4 – Insecure Direct Object References

A5 – Security Misconfiguration

A6 – Sensitive Data Exposure

A7 – Missing Function Level Access Control

A8 – Cross-Site Request Forgery (CSRF)

A9 – Using Known Vulnerable Components

A10 – Unvalidated Redirects and Forwards

Thank you

Wani

*This post is locked for comments

I have the same question (0)

All responses (1)

Answers (0)

Wani 80 on at

Like (0)

Report

I have done self-studied and found that we shall not keep any PCI nor PAN. However, one of my customer has and we simply broke A1-A9 :(

Lots of work awaits me. :)

Wani :)

Was this reply helpful? Yes No