Statements (24)
| Predicate | Object |
|---|---|
| gptkbp:instanceOf |
Web security concept
|
| gptkbp:alsoKnownAs |
content sniffing
|
| gptkbp:category |
Web standards
Web security |
| gptkbp:cause |
gptkb:cross-site_scripting_(XSS)
security vulnerabilities content spoofing |
| gptkbp:describedBy |
gptkb:WHATWG_HTML_Living_Standard
gptkb:RFC_7231 |
| https://www.w3.org/2000/01/rdf-schema#label |
MIME type sniffing
|
| gptkbp:mitigatedBy |
setting correct Content-Type header
using X-Content-Type-Options: nosniff |
| gptkbp:prevention |
X-Content-Type-Options: nosniff
|
| gptkbp:purpose |
determine file type when Content-Type is missing or incorrect
|
| gptkbp:relatedTo |
web browsers
mime Content-Type header |
| gptkbp:riskFactor |
browser may execute malicious content
|
| gptkbp:usedBy |
gptkb:Google_Chrome
gptkb:Internet_Explorer gptkb:Mozilla_Firefox gptkb:Microsoft_Edge |
| gptkbp:bfsParent |
gptkb:MIME_Sniffing_Standard
|
| gptkbp:bfsLayer |
5
|