[unisog] in memory cookie safe from theft ??

Valdis.Kletnieks at vt.edu Valdis.Kletnieks at vt.edu
Tue Mar 11 18:48:25 GMT 2003


On Tue, 11 Mar 2003 09:18:15 EST, Christopher Cramer said:

> I don't have your original email on hand, but is there a known XSS
> vulnerability or is the vendor doing stupid things with cookies and you
> have a concern for potential cookie stealing?

There are known XSS vulnerabilities, *AND* the vendor is doing stupid things.


-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 226 bytes
Desc: not available
Url : http://www.dshield.org/pipermail/unisog/attachments/20030311/f2cfe513/attachment-0007.bin


More information about the unisog mailing list