{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,4,22]],"date-time":"2026-04-22T20:17:40Z","timestamp":1776889060104,"version":"3.51.2"},"publisher-location":"New York, NY, USA","reference-count":49,"publisher":"ACM","license":[{"start":{"date-parts":[[2018,8,7]],"date-time":"2018-08-07T00:00:00Z","timestamp":1533600000000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/www.acm.org\/publications\/policies\/copyright_policy#Background"}],"funder":[{"DOI":"10.13039\/100000001","name":"National Science Foundation","doi-asserted-by":"publisher","award":["CNS-1526353, CNS-1539902, CNS-1535796"],"award-info":[{"award-number":["CNS-1526353, CNS-1539902, CNS-1535796"]}],"id":[{"id":"10.13039\/100000001","id-type":"DOI","asserted-by":"publisher"}]}],"content-domain":{"domain":["dl.acm.org"],"crossmark-restriction":true},"short-container-title":[],"published-print":{"date-parts":[[2018,8,7]]},"DOI":"10.1145\/3229565.3229568","type":"proceedings-article","created":{"date-parts":[[2018,8,1]],"date-time":"2018-08-01T19:07:07Z","timestamp":1533150427000},"page":"29-35","update-policy":"https:\/\/doi.org\/10.1145\/crossmark-policy","source":"Crossref","is-referenced-by-count":40,"title":["Web-based Attacks to Discover and Control Local IoT Devices"],"prefix":"10.1145","author":[{"given":"Gunes","family":"Acar","sequence":"first","affiliation":[{"name":"Princeton University"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Danny Yuxing","family":"Huang","sequence":"additional","affiliation":[{"name":"Princeton University"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Frank","family":"Li","sequence":"additional","affiliation":[{"name":"UC Berkeley"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Arvind","family":"Narayanan","sequence":"additional","affiliation":[{"name":"Princeton University"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Nick","family":"Feamster","sequence":"additional","affiliation":[{"name":"Princeton University"}],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"320","published-online":{"date-parts":[[2018,8,7]]},"reference":[{"key":"e_1_3_2_1_1_1","unstructured":"Federal Trade Commission. FTC Charges D-Link Put Consumers' Privacy at Risk Due to the Inadequate Security of Its Computer Routers and Cameras. https:\/\/www.ftc.gov\/news-events\/press-releases\/2017\/01\/ftc-charges-d-link-put-consumers-privacy-risk-due-inadequate 2017.  Federal Trade Commission. FTC Charges D-Link Put Consumers' Privacy at Risk Due to the Inadequate Security of Its Computer Routers and Cameras. https:\/\/www.ftc.gov\/news-events\/press-releases\/2017\/01\/ftc-charges-d-link-put-consumers-privacy-risk-due-inadequate 2017."},{"key":"e_1_3_2_1_2_1","unstructured":"Federal Trade Commission. ASUS Settles FTC Charges That Insecure Home Routers and \"Cloud\" Services Put Consumers' Privacy At Risk. https:\/\/www.ftc.gov\/news-events\/press-releases\/2016\/02\/asus-settles-ftc-charges-insecure-home-routers-cloud-services-put 2016.  Federal Trade Commission. ASUS Settles FTC Charges That Insecure Home Routers and \"Cloud\" Services Put Consumers' Privacy At Risk. https:\/\/www.ftc.gov\/news-events\/press-releases\/2016\/02\/asus-settles-ftc-charges-insecure-home-routers-cloud-services-put 2016."},{"key":"e_1_3_2_1_3_1","unstructured":"Federal Trade Commission. Electronic Toy Maker VTech Settles FTC Allegations That it Violated Children's Privacy Law and the FTC Act. https:\/\/www.ftc.gov\/news-events\/press-releases\/2018\/01\/electronic-toy-maker-vtech-settles-ftc-allegations-it-violated 2018.  Federal Trade Commission. Electronic Toy Maker VTech Settles FTC Allegations That it Violated Children's Privacy Law and the FTC Act. https:\/\/www.ftc.gov\/news-events\/press-releases\/2018\/01\/electronic-toy-maker-vtech-settles-ftc-allegations-it-violated 2018."},{"key":"e_1_3_2_1_4_1","unstructured":"VIZIO to Pay $2.2 Million to FTC State of New Jersey to Settle Charges It Collected Viewing Histories on 11 Million Smart Televisions without Users' Consent. https:\/\/www.ftc.gov\/news-events\/press-releases\/2017\/02\/vizio-pay-22-million-ftc-state-new-jersey-settle-charges-it 2017.  VIZIO to Pay $2.2 Million to FTC State of New Jersey to Settle Charges It Collected Viewing Histories on 11 Million Smart Televisions without Users' Consent. https:\/\/www.ftc.gov\/news-events\/press-releases\/2017\/02\/vizio-pay-22-million-ftc-state-new-jersey-settle-charges-it 2017."},{"key":"e_1_3_2_1_5_1","doi-asserted-by":"publisher","DOI":"10.1145\/3025453.3025735"},{"key":"e_1_3_2_1_6_1","volume-title":"http:\/\/www.bbc.com\/news\/world-europe-39002142","author":"Destroy Cayla German Parents","year":"2017","unstructured":"German Parents Told to Destroy Cayla Dolls o ver Hacking Fears . http:\/\/www.bbc.com\/news\/world-europe-39002142 , 2017 . German Parents Told to Destroy Cayla Dolls over Hacking Fears. http:\/\/www.bbc.com\/news\/world-europe-39002142, 2017."},{"key":"e_1_3_2_1_7_1","volume-title":"2016 Dyn cyberattack. https:\/\/en.wikipedia.org\/wiki\/2016_Dyn_cyberattack","year":"2016","unstructured":"Wikipedia. 2016 Dyn cyberattack. https:\/\/en.wikipedia.org\/wiki\/2016_Dyn_cyberattack , 2016 . Wikipedia. 2016 Dyn cyberattack. https:\/\/en.wikipedia.org\/wiki\/2016_Dyn_cyberattack, 2016."},{"key":"e_1_3_2_1_8_1","volume-title":"IEEE Symposium on Security and Privacy (S&P)","author":"Dean Drew","year":"1996","unstructured":"Drew Dean , Edward W Felten , and Dan S Wallach . Java Security : From HotJava to Netscape and Beyond . In IEEE Symposium on Security and Privacy (S&P) , 1996 . Drew Dean, Edward W Felten, and Dan S Wallach. Java Security: From HotJava to Netscape and Beyond. In IEEE Symposium on Security and Privacy (S&P), 1996."},{"key":"e_1_3_2_1_9_1","volume-title":"High rate of MEDIA_ERR_SRC_NOT_SUPPORTED error being thrown. https:\/\/bugzilla.mozilla.org\/show_bug.cgi?id=1417869#c3","year":"2017","unstructured":"Mozilla. High rate of MEDIA_ERR_SRC_NOT_SUPPORTED error being thrown. https:\/\/bugzilla.mozilla.org\/show_bug.cgi?id=1417869#c3 , 2017 . Mozilla. High rate of MEDIA_ERR_SRC_NOT_SUPPORTED error being thrown. https:\/\/bugzilla.mozilla.org\/show_bug.cgi?id=1417869#c3, 2017."},{"key":"e_1_3_2_1_10_1","volume-title":"Better logging for cause of media playback failure. https:\/\/bugs.chromium.org\/p\/chromium\/issues\/detail?id=492845","year":"2015","unstructured":"Chromium. Better logging for cause of media playback failure. https:\/\/bugs.chromium.org\/p\/chromium\/issues\/detail?id=492845 , 2015 . Chromium. Better logging for cause of media playback failure. https:\/\/bugs.chromium.org\/p\/chromium\/issues\/detail?id=492845, 2015."},{"key":"e_1_3_2_1_11_1","doi-asserted-by":"publisher","DOI":"10.1145\/1180405.1180434"},{"key":"e_1_3_2_1_12_1","volume-title":"Blackhat USA","author":"Grossman Jeremiah","year":"2006","unstructured":"Jeremiah Grossman and T Niedzialkowski . Hacking Intranet Websites from the Outside: JavaScript Malware Just Got a Lot More Dangerous . Blackhat USA , 2006 . Jeremiah Grossman and T Niedzialkowski. Hacking Intranet Websites from the Outside: JavaScript Malware Just Got a Lot More Dangerous. Blackhat USA, 2006."},{"key":"e_1_3_2_1_13_1","volume-title":"Markus Jakobsson. Drive-By Pharming. In International Conference on Information and Communications Security (ICICS)","author":"Stamm Sid","year":"2007","unstructured":"Sid Stamm , Zulfikar Ramzan , and Markus Jakobsson. Drive-By Pharming. In International Conference on Information and Communications Security (ICICS) , 2007 . Sid Stamm, Zulfikar Ramzan, and Markus Jakobsson. Drive-By Pharming. In International Conference on Information and Communications Security (ICICS), 2007."},{"key":"e_1_3_2_1_14_1","volume-title":"Android Devices. https:\/\/www.proofpoint.com\/us\/threat-insight\/post\/home-routers-under-attack-malvertising-windows-android-devices","year":"2015","unstructured":"Proofpoint. Home Routers Under Attack via Malvertising on Windows , Android Devices. https:\/\/www.proofpoint.com\/us\/threat-insight\/post\/home-routers-under-attack-malvertising-windows-android-devices , 2015 . Proofpoint. Home Routers Under Attack via Malvertising on Windows, Android Devices. https:\/\/www.proofpoint.com\/us\/threat-insight\/post\/home-routers-under-attack-malvertising-windows-android-devices, 2015."},{"key":"e_1_3_2_1_15_1","volume-title":"https:\/\/github.com\/beefproject\/beef\/wiki\/Xss-Rays","author":"Rays XSS","year":"2012","unstructured":"beefproject. XSS Rays . https:\/\/github.com\/beefproject\/beef\/wiki\/Xss-Rays , 2012 . beefproject. XSS Rays. https:\/\/github.com\/beefproject\/beef\/wiki\/Xss-Rays, 2012."},{"key":"e_1_3_2_1_16_1","unstructured":"JS-Recon. Port Scanning with HTML5 and JS-Recon. http:\/\/blog.andlabs.org\/2010\/12\/port-scanning-with-html5-and-js-recon.html 2010.  JS-Recon. Port Scanning with HTML5 and JS-Recon. http:\/\/blog.andlabs.org\/2010\/12\/port-scanning-with-html5-and-js-recon.html 2010."},{"key":"e_1_3_2_1_17_1","volume-title":"Port Scanning Local Network From a Web Browser. https:\/\/defuse.ca\/in-browser-port-scanning.htm","author":"Hornby Taylor","year":"2015","unstructured":"Taylor Hornby . Port Scanning Local Network From a Web Browser. https:\/\/defuse.ca\/in-browser-port-scanning.htm , 2015 . Taylor Hornby. Port Scanning Local Network From a Web Browser. https:\/\/defuse.ca\/in-browser-port-scanning.htm, 2015."},{"key":"e_1_3_2_1_18_1","unstructured":"Peppersoft. Local Network Scanner with JavaScript. http:\/\/peppersoft.net\/local-network-scanner-javascript\/ 2017.  Peppersoft. Local Network Scanner with JavaScript. http:\/\/peppersoft.net\/local-network-scanner-javascript\/ 2017."},{"key":"e_1_3_2_1_19_1","volume-title":"https:\/\/www.myria.de\/lan-scan\/index.php","author":"JavaScript LAN","year":"2007","unstructured":"JavaScript LAN scanner. https:\/\/www.myria.de\/lan-scan\/index.php , 2007 . JavaScript LAN scanner. https:\/\/www.myria.de\/lan-scan\/index.php, 2007."},{"key":"e_1_3_2_1_20_1","volume-title":"lan-js: Probe LAN devices from a web browser. https:\/\/github.com\/joevennix\/lan-js","author":"Vennix Joe","year":"2015","unstructured":"Joe Vennix . lan-js: Probe LAN devices from a web browser. https:\/\/github.com\/joevennix\/lan-js , 2015 . Joe Vennix. lan-js: Probe LAN devices from a web browser. https:\/\/github.com\/joevennix\/lan-js, 2015."},{"key":"e_1_3_2_1_21_1","volume-title":"sonar.js: A Framework for Identifying and Launching Exploits against Internal Network Hosts. https:\/\/github.com\/mandatoryprogrammer\/sonar.js","author":"Bryant Matthew","year":"2015","unstructured":"Matthew Bryant . sonar.js: A Framework for Identifying and Launching Exploits against Internal Network Hosts. https:\/\/github.com\/mandatoryprogrammer\/sonar.js , 2015 . Matthew Bryant. sonar.js: A Framework for Identifying and Launching Exploits against Internal Network Hosts. https:\/\/github.com\/mandatoryprogrammer\/sonar.js, 2015."},{"key":"e_1_3_2_1_22_1","volume-title":"Port Scanning and WebSockets. https:\/\/datatracker.ietf.org\/meeting\/96\/materials\/slides-96-saag-1\/","author":"Gallagher Tom","year":"2016","unstructured":"Tom Gallagher . Port Scanning and WebSockets. https:\/\/datatracker.ietf.org\/meeting\/96\/materials\/slides-96-saag-1\/ , 2016 . Tom Gallagher. Port Scanning and WebSockets. https:\/\/datatracker.ietf.org\/meeting\/96\/materials\/slides-96-saag-1\/, 2016."},{"key":"e_1_3_2_1_23_1","volume-title":"Security Enhancement for WebSockets to Prevent Private Network Mapping. https:\/\/tools.ietf.org\/html\/draft-gallagher-hybiwebsocketenhancement-00","author":"Gallagher Tom","year":"2016","unstructured":"Tom Gallagher . Security Enhancement for WebSockets to Prevent Private Network Mapping. https:\/\/tools.ietf.org\/html\/draft-gallagher-hybiwebsocketenhancement-00 , 2016 . Tom Gallagher. Security Enhancement for WebSockets to Prevent Private Network Mapping. https:\/\/tools.ietf.org\/html\/draft-gallagher-hybiwebsocketenhancement-00, 2016."},{"key":"e_1_3_2_1_24_1","volume-title":"Jong Kim. Identifying Cross-origin Resource Status Using Application Cache. In Network and Distributed System Security Symposium (NDSS)","author":"Lee Sangho","year":"2015","unstructured":"Sangho Lee , Hyungsub Kim , and Jong Kim. Identifying Cross-origin Resource Status Using Application Cache. In Network and Distributed System Security Symposium (NDSS) , 2015 . Sangho Lee, Hyungsub Kim, and Jong Kim. Identifying Cross-origin Resource Status Using Application Cache. In Network and Distributed System Security Symposium (NDSS), 2015."},{"key":"e_1_3_2_1_25_1","doi-asserted-by":"publisher","DOI":"10.1145\/1462148.1462150"},{"key":"e_1_3_2_1_26_1","volume-title":"How Your Ethereum Can Be Stolen Through DNS Rebinding. https:\/\/ret2got.wordpress.com\/2018\/01\/19\/how-your-ethereum-can-be-stolen-using-dns-rebinding","year":"2018","unstructured":"Jazzy. How Your Ethereum Can Be Stolen Through DNS Rebinding. https:\/\/ret2got.wordpress.com\/2018\/01\/19\/how-your-ethereum-can-be-stolen-using-dns-rebinding , 2018 . Jazzy. How Your Ethereum Can Be Stolen Through DNS Rebinding. https:\/\/ret2got.wordpress.com\/2018\/01\/19\/how-your-ethereum-can-be-stolen-using-dns-rebinding, 2018."},{"key":"e_1_3_2_1_27_1","volume-title":"https:\/\/tools.kali.org\/sniffingspoofing\/rebind","year":"2014","unstructured":"Rebind. https:\/\/tools.kali.org\/sniffingspoofing\/rebind , 2014 . Rebind. https:\/\/tools.kali.org\/sniffingspoofing\/rebind, 2014."},{"key":"e_1_3_2_1_28_1","volume-title":"rbndr. https:\/\/github.com\/taviso\/rbndr","author":"Ormandy Taviso","year":"2017","unstructured":"Taviso Ormandy . rbndr. https:\/\/github.com\/taviso\/rbndr , 2017 . Taviso Ormandy. rbndr. https:\/\/github.com\/taviso\/rbndr, 2017."},{"key":"e_1_3_2_1_29_1","volume-title":"https:\/\/bugzilla.mozilla.org\/show_bug.cgi?id=149943","author":"Prevent Bug","year":"2002","unstructured":"Bug 149943 - Use \"DNS pinning\" to Prevent Princeton-like Exploits. https:\/\/bugzilla.mozilla.org\/show_bug.cgi?id=149943 , 2002 . Bug 149943 - Use \"DNS pinning\" to Prevent Princeton-like Exploits. https:\/\/bugzilla.mozilla.org\/show_bug.cgi?id=149943, 2002."},{"key":"e_1_3_2_1_30_1","volume-title":"DNS Rebinding Protections. https:\/\/doc.pfsense.org\/index.php\/DNS_Rebinding_Protections","year":"2011","unstructured":"pfSense. DNS Rebinding Protections. https:\/\/doc.pfsense.org\/index.php\/DNS_Rebinding_Protections , 2011 . pfSense. DNS Rebinding Protections. https:\/\/doc.pfsense.org\/index.php\/DNS_Rebinding_Protections, 2011."},{"key":"e_1_3_2_1_31_1","volume-title":"a Real Solution to DNS Rebinding Attacks. https:\/\/umbrella.cisco.com\/blog\/2008\/04\/14\/finally-a-real-solution-to-dns-rebinding-attacks\/","year":"2008","unstructured":"Cisco. Finally , a Real Solution to DNS Rebinding Attacks. https:\/\/umbrella.cisco.com\/blog\/2008\/04\/14\/finally-a-real-solution-to-dns-rebinding-attacks\/ , 2008 . Cisco. Finally, a Real Solution to DNS Rebinding Attacks. https:\/\/umbrella.cisco.com\/blog\/2008\/04\/14\/finally-a-real-solution-to-dns-rebinding-attacks\/, 2008."},{"key":"e_1_3_2_1_32_1","volume-title":"google-dnswall. https:\/\/github.com\/abortz\/google-dnswall\/","author":"Bortz Andrew","year":"2015","unstructured":"Andrew Bortz . google-dnswall. https:\/\/github.com\/abortz\/google-dnswall\/ , 2015 . Andrew Bortz. google-dnswall. https:\/\/github.com\/abortz\/google-dnswall\/, 2015."},{"key":"e_1_3_2_1_33_1","volume-title":"Dai and Ryan Resig. FireDrill: Interactive DNS Rebinding. In USENIX Workshop on Offensive Technologies (WOOT)","author":"Yunxing","year":"2013","unstructured":"Yunxing Dai and Ryan Resig. FireDrill: Interactive DNS Rebinding. In USENIX Workshop on Offensive Technologies (WOOT) , 2013 . Yunxing Dai and Ryan Resig. FireDrill: Interactive DNS Rebinding. In USENIX Workshop on Offensive Technologies (WOOT), 2013."},{"key":"e_1_3_2_1_34_1","volume-title":"A Tool For Developing DNS Rebinding PoCs | LinkedIn Engineering. https:\/\/engineering.linkedin.com\/blog\/2017\/07\/open-sourcing-jaqen--a-tool-for-developing-dns-rebinding-pocs","author":"Young Luke","year":"2017","unstructured":"Luke Young . Open Sourcing Jaqen , A Tool For Developing DNS Rebinding PoCs | LinkedIn Engineering. https:\/\/engineering.linkedin.com\/blog\/2017\/07\/open-sourcing-jaqen--a-tool-for-developing-dns-rebinding-pocs , 2017 . Luke Young. Open Sourcing Jaqen, A Tool For Developing DNS Rebinding PoCs | LinkedIn Engineering. https:\/\/engineering.linkedin.com\/blog\/2017\/07\/open-sourcing-jaqen--a-tool-for-developing-dns-rebinding-pocs, 2017."},{"key":"e_1_3_2_1_35_1","volume-title":"https:\/\/www.cablelabs.com\/","year":"2018","unstructured":"CableLabs. https:\/\/www.cablelabs.com\/ , 2018 . CableLabs. https:\/\/www.cablelabs.com\/, 2018."},{"key":"e_1_3_2_1_36_1","volume-title":"https:\/\/rithvikvibhu.github.io\/GHLocalApi\/","author":"Google Home","year":"2018","unstructured":"Google Home Local API. https:\/\/rithvikvibhu.github.io\/GHLocalApi\/ , 2018 . Google Home Local API. https:\/\/rithvikvibhu.github.io\/GHLocalApi\/, 2018."},{"key":"e_1_3_2_1_37_1","volume-title":"SDP for the WebRTC. https:\/\/tools.ietf.org\/html\/draft-nandakumar-rtcweb-sdp-00","author":"Nandakumar Suhas","year":"2012","unstructured":"Suhas Nandakumar and Cullen Jennings . SDP for the WebRTC. https:\/\/tools.ietf.org\/html\/draft-nandakumar-rtcweb-sdp-00 , 2012 . Suhas Nandakumar and Cullen Jennings. SDP for the WebRTC. https:\/\/tools.ietf.org\/html\/draft-nandakumar-rtcweb-sdp-00, 2012."},{"key":"e_1_3_2_1_38_1","volume-title":"https:\/\/developer.mozilla.org\/en-US\/docs\/Web\/API\/Fetch_API","author":"Fetch","year":"2018","unstructured":"Mozilla. Fetch API. https:\/\/developer.mozilla.org\/en-US\/docs\/Web\/API\/Fetch_API , 2018 . Mozilla. Fetch API. https:\/\/developer.mozilla.org\/en-US\/docs\/Web\/API\/Fetch_API, 2018."},{"key":"e_1_3_2_1_39_1","volume-title":"WiGLE: Wireless Network Mapping. https:\/\/wigle.net\/","year":"2018","unstructured":"WiGLE.net. WiGLE: Wireless Network Mapping. https:\/\/wigle.net\/ , 2018 . WiGLE.net. WiGLE: Wireless Network Mapping. https:\/\/wigle.net\/, 2018."},{"key":"e_1_3_2_1_40_1","volume-title":"List of User Agent strings. https:\/\/deviceatlas.com\/blog\/list-of-user-agent-strings","author":"Piejko Pawel","year":"2018","unstructured":"Pawel Piejko . List of User Agent strings. https:\/\/deviceatlas.com\/blog\/list-of-user-agent-strings , 2018 . Pawel Piejko. List of User Agent strings. https:\/\/deviceatlas.com\/blog\/list-of-user-agent-strings, 2018."},{"key":"e_1_3_2_1_41_1","volume-title":"Forbidden Header Name. https:\/\/developer.mozilla.org\/en-US\/docs\/Glossary\/Forbidden_header_name","year":"2017","unstructured":"Mozilla. Forbidden Header Name. https:\/\/developer.mozilla.org\/en-US\/docs\/Glossary\/Forbidden_header_name , 2017 . Mozilla. Forbidden Header Name. https:\/\/developer.mozilla.org\/en-US\/docs\/Glossary\/Forbidden_header_name, 2017."},{"key":"e_1_3_2_1_42_1","unstructured":"Simon Kelley. Man page of dnsmasq. http:\/\/www.thekelleys.org.uk\/dnsmasq\/docs\/dnsmasq-man.html 2018.  Simon Kelley. Man page of dnsmasq. http:\/\/www.thekelleys.org.uk\/dnsmasq\/docs\/dnsmasq-man.html 2018."},{"key":"e_1_3_2_1_43_1","volume-title":"DNS and DHCP Configuration. https:\/\/wiki.openwrt.org\/doc\/uci\/dhcp#common_options","year":"2018","unstructured":"OpenWrt. DNS and DHCP Configuration. https:\/\/wiki.openwrt.org\/doc\/uci\/dhcp#common_options , 2018 . OpenWrt. DNS and DHCP Configuration. https:\/\/wiki.openwrt.org\/doc\/uci\/dhcp#common_options, 2018."},{"key":"e_1_3_2_1_44_1","volume-title":"https:\/\/bugzilla.mozilla.org\/show_bug.cgi?id=174590","author":"Bug","year":"2002","unstructured":"Bug 174590 - DNS \"Pinning\" behavior leads to security hole. https:\/\/bugzilla.mozilla.org\/show_bug.cgi?id=174590 , 2002 . Bug 174590 - DNS \"Pinning\" behavior leads to security hole. https:\/\/bugzilla.mozilla.org\/show_bug.cgi?id=174590, 2002."},{"key":"e_1_3_2_1_45_1","volume-title":"https:\/\/bugzilla.mozilla.org\/show_bug.cgi?id=689835#c9","author":"Bug","year":"2011","unstructured":"Bug 689835 - DNS rebinding attack using cached resources. https:\/\/bugzilla.mozilla.org\/show_bug.cgi?id=689835#c9 , 2011 . Bug 689835 - DNS rebinding attack using cached resources. https:\/\/bugzilla.mozilla.org\/show_bug.cgi?id=689835#c9, 2011."},{"key":"e_1_3_2_1_46_1","volume-title":"DNS cache can be flooded, which leads to DNS rebinding, circumvents same origin policy. https:\/\/bugs.chromium.org\/p\/chromium\/issues\/detail?id=274464#c10","author":"Security Bug","year":"2013","unstructured":"Bug 274464 - Security : DNS cache can be flooded, which leads to DNS rebinding, circumvents same origin policy. https:\/\/bugs.chromium.org\/p\/chromium\/issues\/detail?id=274464#c10 , 2013 . Bug 274464 - Security: DNS cache can be flooded, which leads to DNS rebinding, circumvents same origin policy. https:\/\/bugs.chromium.org\/p\/chromium\/issues\/detail?id=274464#c10, 2013."},{"key":"e_1_3_2_1_47_1","volume-title":"user-agent' header control - whatwg\/fetch. https:\/\/github.com\/whatwg\/fetch\/issues\/37","author":"Issue","year":"2018","unstructured":"Issue #37 : ' user-agent' header control - whatwg\/fetch. https:\/\/github.com\/whatwg\/fetch\/issues\/37 , 2018 . Issue #37: 'user-agent' header control - whatwg\/fetch. https:\/\/github.com\/whatwg\/fetch\/issues\/37, 2018."},{"key":"e_1_3_2_1_48_1","volume-title":"https:\/\/bugzilla.mozilla.org\/show_bug.cgi?id=1450853","author":"MediaError Message Property Bug","year":"2018","unstructured":"Bug 1450853 - MediaError Message Property Leaks Cross-Origin Response Status. https:\/\/bugzilla.mozilla.org\/show_bug.cgi?id=1450853 , 2018 . Bug 1450853 - MediaError Message Property Leaks Cross-Origin Response Status. https:\/\/bugzilla.mozilla.org\/show_bug.cgi?id=1450853, 2018."},{"key":"e_1_3_2_1_49_1","volume-title":"https:\/\/bugs.chromium.org\/p\/chromium\/issues\/detail?id=828265","author":"MediaError Message Property Bug","year":"2018","unstructured":"Bug 828265 - MediaError Message Property Leaks Cross-Origin Response Status. https:\/\/bugs.chromium.org\/p\/chromium\/issues\/detail?id=828265 , 2018 . Bug 828265 - MediaError Message Property Leaks Cross-Origin Response Status. https:\/\/bugs.chromium.org\/p\/chromium\/issues\/detail?id=828265, 2018."}],"event":{"name":"SIGCOMM '18: ACM SIGCOMM 2018 Conference","location":"Budapest Hungary","acronym":"SIGCOMM '18","sponsor":["SIGCOMM ACM Special Interest Group on Data Communication"]},"container-title":["Proceedings of the 2018 Workshop on IoT Security and Privacy"],"original-title":[],"link":[{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/3229565.3229568","content-type":"unspecified","content-version":"vor","intended-application":"text-mining"},{"URL":"https:\/\/dl.acm.org\/doi\/pdf\/10.1145\/3229565.3229568","content-type":"application\/pdf","content-version":"vor","intended-application":"syndication"},{"URL":"https:\/\/dl.acm.org\/doi\/pdf\/10.1145\/3229565.3229568","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2025,6,18]],"date-time":"2025-06-18T01:39:43Z","timestamp":1750210783000},"score":1,"resource":{"primary":{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/3229565.3229568"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2018,8,7]]},"references-count":49,"alternative-id":["10.1145\/3229565.3229568","10.1145\/3229565"],"URL":"https:\/\/doi.org\/10.1145\/3229565.3229568","relation":{},"subject":[],"published":{"date-parts":[[2018,8,7]]},"assertion":[{"value":"2018-08-07","order":2,"name":"published","label":"Published","group":{"name":"publication_history","label":"Publication History"}}]}}