jetlib.sec » Tags » cookie

Feeds

133354 items (0 unread) in 27 feeds

• 1337day (was: Inj3ct0r, 1337db)
• OSVDB Vulnerabilities
• Exploit-DB
• SecurityFocus Vulnerabilities
• Bugtraq
• Full Disclosure
• XSSed
• Packet Storm Security Headlines
• Packet Storm Security Advisories
• Packet Storm Security Exploits
• Packet Storm Security Recent Files
• Packet Storm Security Tools
• Packet Storm Security Misc. Files
• Sophos security news
• Sophos product advisories
• Penetration Testing
• SecuriTeam
• BackTrack Linux Forums
• Threatpost
• SecDocs
• carnal0wnage.attackresearch.com
• Carnal0wnage
• Kernel Fun
• Darknet
• The Exploitant
• Hack a Day
• Wirevolution

70 items tagged "cookie"

Related tags: txt [+], code execution [+], manipulation [+], cookie manipulation [+], arcade [+], apache [+], web [+], tornado [+], cms [+], tomcat [+], theft [+], suhosin [+], stack buffer [+], sql [+], privilege [+], phpminisite [+], phpdirector [+], omniture [+], information disclosure vulnerability [+], impersonation [+], extension [+], escalation [+], denial of service [+], cisco telepresensce [+], cisco telepresence [+], buffer overflow [+], book [+], bannerexchange [+], babil [+], apache tomcat [+], adultbannerexchange [+], adobe [+], vulnerability [+], stealing [+], side [+], number [+], nathan mcfeters [+], monster [+], mathematical calculations [+], input validation vulnerabilities [+], handling [+], hacks [+], facebook [+], cookie monster [+], client [+], black hat [+], barracuda [+], backup version [+], awcm [+], authentication [+], asia [+], analysis tool [+], year [+], yahoo [+], xss [+], with [+], voice [+], uncertain [+], tracking cookie [+], tracking [+], theme [+], slides [+], single lens reflex camera [+], session [+], security [+], secure [+], protocol [+], proof of concept [+], projector [+], phshoutbox [+], oracle crm [+], oracle [+], novell iprint [+], novell [+], nikolaus gradwohl [+], miss [+], lens reflex [+], law changes [+], law [+], lang [+], konqueror [+], kde [+], islamic voice [+], iprint [+], injection [+], hot links [+], home [+], hacker [+], government [+], glitch [+], exploits [+], evuln [+], error documents [+], emirateshost [+], domain validation [+], disclosure [+], digital [+], deferred [+], cookie security [+], cookie cutters [+], cookie authentication [+], companies [+], com [+], classifiedultra [+], case [+], cameras [+], camera [+], bugtraq [+], broken camera [+], bmsa [+], bad request [+], apartmentsearch [+], Newbie [+], Fixes [+], 3d printer [+], insecure [+]

• May 17, 2012
• 10:24

  Government To Miss Cookie Cut-Off

   » ‎ Packet Storm Security Headlines
  Government To Miss Cookie Cut-Off

  Tags:  miss cookie government  

• January 31, 2012
• 14:00

  [remote exploits] - Apache httpOnly Cookie Disclosure

   » ‎ 1337day (was: Inj3ct0r, 1337db)
  [remote exploits] - Apache httpOnly Cookie Disclosure

  Tags:  disclosure cookie apache exploits  

• 3:11

  Apache protocol.c Cookie Disclosure

   » ‎ Packet Storm Security Exploits
  Proof of concept code for a vulnerability in protocol.c from Apache versions 2.2.x through 2.2.21. The issue is that it does not properly restrict header information during construction of Bad Request (aka 400) error documents, which allows remote attackers to obtain the values of HTTPOnly cookies.

  Tags:  cookie protocol apache proof-of-concept bad-request error-documents  

• January 20, 2012
• 21:58

  [Audio] The Internet is Broken: Beyond Document.Cookie - Extreme Client Side Exploitation

   » ‎ SecDocs
  Authors: Nathan McFeters
  Tags: cookie client side
  Event: Black Hat Asia 2008
  

  Tags:  client side cookie nathan-mcfeters asia black-hat  

• 21:58

  [Slides] The Internet is Broken: Beyond Document.Cookie - Extreme Client Side Exploitation

   » ‎ SecDocs
  Authors: Nathan McFeters
  Tags: cookie client side
  Event: Black Hat Asia 2008
  

  Tags:  client side cookie nathan-mcfeters asia black-hat slides  

• January 19, 2012
• 15:48

  Suhosin PHP Extension Transparent Cookie Encryption Stack Buffer Overflow

   » ‎ Packet Storm Security Exploits
  A possible stack buffer overflow in Suhosin extension's transparent cookie encryption that can only be triggered in an uncommon and weakened Suhosin configuration can lead to arbitrary remote code execution, if the FORTIFY_SOURCE compile option was not used when Suhosin was compiled. Versions 0.9.32.1 and below are affected.

  Tags:  suhosin cookie extension stack-buffer buffer-overflow code-execution  

• 15:48

  Suhosin PHP Extension Transparent Cookie Encryption Stack Buffer Overflow

   » ‎ Packet Storm Security Recent Files
  A possible stack buffer overflow in Suhosin extension's transparent cookie encryption that can only be triggered in an uncommon and weakened Suhosin configuration can lead to arbitrary remote code execution, if the FORTIFY_SOURCE compile option was not used when Suhosin was compiled. Versions 0.9.32.1 and below are affected.

  Tags:  suhosin cookie extension stack-buffer buffer-overflow code-execution  

• 15:48

  Suhosin PHP Extension Transparent Cookie Encryption Stack Buffer Overflow

   » ‎ Packet Storm Security Misc. Files
  A possible stack buffer overflow in Suhosin extension's transparent cookie encryption that can only be triggered in an uncommon and weakened Suhosin configuration can lead to arbitrary remote code execution, if the FORTIFY_SOURCE compile option was not used when Suhosin was compiled. Versions 0.9.32.1 and below are affected.

  Tags:  suhosin cookie extension stack-buffer buffer-overflow code-execution  

• October 15, 2011
• 16:46

  AV Arcade Pro 5.4.3 Cookie Manipulation

   » ‎ Packet Storm Security Exploits
  AV Arcade Pro version 5.4.3 suffers from an insecure cookie vulnerability that allows for access bypass.

  Tags:  manipulation arcade cookie cookie-manipulation vulnerability  

• 16:46

  AV Arcade Pro 5.4.3 Cookie Manipulation

   » ‎ Packet Storm Security Exploits
  AV Arcade Pro version 5.4.3 suffers from an insecure cookie vulnerability that allows for access bypass.

  Tags:  manipulation arcade cookie cookie-manipulation vulnerability  

• 16:46

  AV Arcade Pro 5.4.3 Cookie Manipulation

   » ‎ Packet Storm Security Recent Files
  AV Arcade Pro version 5.4.3 suffers from an insecure cookie vulnerability that allows for access bypass.

  Tags:  manipulation arcade cookie cookie-manipulation vulnerability  

• 16:46

  AV Arcade Pro 5.4.3 Cookie Manipulation

   » ‎ Packet Storm Security Misc. Files
  AV Arcade Pro version 5.4.3 suffers from an insecure cookie vulnerability that allows for access bypass.

  Tags:  manipulation arcade cookie cookie-manipulation vulnerability  

• October 04, 2011
• 7:15

  Facebook Tracking Cookie Returns, According To Hacker

   » ‎ Packet Storm Security Headlines
  Facebook Tracking Cookie Returns, According To Hacker

  Tags:  tracking facebook cookie tracking-cookie hacker  

• September 29, 2011
• 9:15

  Facebook Fixes ID Cookie Glitch

   » ‎ Packet Storm Security Headlines
  Facebook Fixes ID Cookie Glitch

  Tags:  facebook Fixes cookie glitch  

• September 28, 2011
• 13:59

  Barracuda Backup 2.0 Cookie Manipulation

   » ‎ Packet Storm Security Exploits
  Barracuda Backup version 2.0 suffers from multiple input validation vulnerabilities.

  Tags:  manipulation barracuda cookie input-validation-vulnerabilities cookie-manipulation backup-version  

• 13:59

  Barracuda Backup 2.0 Cookie Manipulation

   » ‎ Packet Storm Security Recent Files
  Barracuda Backup version 2.0 suffers from multiple input validation vulnerabilities.

  Tags:  manipulation barracuda cookie input-validation-vulnerabilities cookie-manipulation backup-version  

• September 19, 2011
• 6:34

  Cisco TelePresence Cookie Theft / Impersonation / Code Execution

   » ‎ Packet Storm Security Exploits
  Cisco TelePresensce Series suffers from client-side code execution, denial of service, cookie theft, loss of confidentiality, and impersonation vulnerabilities.

  Tags:  impersonation cookie theft cisco-telepresence cisco-telepresensce code-execution denial-of-service  

• 6:34

  Cisco TelePresence Cookie Theft / Impersonation / Code Execution

   » ‎ Packet Storm Security Recent Files
  Cisco TelePresensce Series suffers from client-side code execution, denial of service, cookie theft, loss of confidentiality, and impersonation vulnerabilities.

  Tags:  impersonation cookie theft cisco-telepresence cisco-telepresensce code-execution denial-of-service  

• 6:34

  Cisco TelePresence Cookie Theft / Impersonation / Code Execution

   » ‎ Packet Storm Security Misc. Files
  Cisco TelePresensce Series suffers from client-side code execution, denial of service, cookie theft, loss of confidentiality, and impersonation vulnerabilities.

  Tags:  impersonation cookie theft cisco-telepresence cisco-telepresensce code-execution denial-of-service  

• September 07, 2011
• 13:01

  Cookie projector uses that dusty film camera of yours

   » ‎ Hack a Day
  This hack is not for photographers with weak hearts. We’re going to be talking about destroying the body of a Single-Lens Reflex camera. But out of destruction comes something new. A broken camera paired with a flash and functional optics can be used to project light patterns for picture backgrounds. The hardware is often referred to as [...]

  Tags:  camera cookie projector single-lens-reflex-camera lens-reflex broken-camera digital cameras hacks  

• June 07, 2011
• 10:00

  Bugtraq: ZDI-11-180: Novell iPrint op-printer-list-all-jobs cookie Remote Code Execution Vulnerability

   » ‎ SecurityFocus Vulnerabilities
  ZDI-11-180: Novell iPrint op-printer-list-all-jobs cookie Remote Code Execution Vulnerability

  Tags:  novell iprint cookie novell-iprint code-execution bugtraq  

• May 25, 2011
• 6:59

  Cookie Law Deferred For One Year

   » ‎ Packet Storm Security Headlines
  Cookie Law Deferred For One Year

  Tags:  deferred law cookie  

• May 20, 2011
• 15:00

  Bugtraq: Session hacking via authentication cookie on Oracle CRM on Demand

   » ‎ SecurityFocus Vulnerabilities
  Session hacking via authentication cookie on Oracle CRM on Demand

  Tags:  authentication session cookie oracle-crm oracle  

• April 27, 2011
• 10:11

  PHPDirector 0.30 Insecure Cookie Handling

   » ‎ Packet Storm Security Exploits
  PHPDirector version 0.30 suffers from an insecure cookie handling vulnerability that allows for privilege escalation.

  Tags:  insecure phpdirector cookie escalation vulnerability privilege  

• 10:11

  PHPDirector 0.30 Insecure Cookie Handling

   » ‎ Packet Storm Security Recent Files
  PHPDirector version 0.30 suffers from an insecure cookie handling vulnerability that allows for privilege escalation.

  Tags:  insecure phpdirector cookie escalation vulnerability privilege  

• 10:11

  PHPDirector 0.30 Insecure Cookie Handling

   » ‎ Packet Storm Security Misc. Files
  PHPDirector version 0.30 suffers from an insecure cookie handling vulnerability that allows for privilege escalation.

  Tags:  insecure phpdirector cookie escalation vulnerability privilege  

• April 20, 2011
• 19:31

  Companies Uncertain Over Cookie Law Changes

   » ‎ Packet Storm Security Headlines
  Companies Uncertain Over Cookie Law Changes

  Tags:  companies uncertain cookie law-changes  

• March 29, 2011
• 14:36

  Adobe Omniture Cookie-Forcing

   » ‎ Packet Storm Security Advisories
  Adobe Omniture suffers from a vulnerability where a malicious cookie can hijack secure connections to the domain by injecting malicious javascript into the page via the cookie.

  Tags:  omniture adobe cookie vulnerability  

• 14:36

  Adobe Omniture Cookie-Forcing

   » ‎ Packet Storm Security Recent Files
  Adobe Omniture suffers from a vulnerability where a malicious cookie can hijack secure connections to the domain by injecting malicious javascript into the page via the cookie.

  Tags:  omniture adobe cookie vulnerability  

• 14:36

  Adobe Omniture Cookie-Forcing

   » ‎ Packet Storm Security Misc. Files
  Adobe Omniture suffers from a vulnerability where a malicious cookie can hijack secure connections to the domain by injecting malicious javascript into the page via the cookie.

  Tags:  omniture adobe cookie vulnerability  

• February 25, 2011
• 11:00

  Bugtraq: [BMSA-2011-01] Insecure secure cookie in web.go

   » ‎ SecurityFocus Vulnerabilities
  [BMSA-2011-01] Insecure secure cookie in web.go

  Tags:  insecure web cookie bmsa  

• 9:23

  web.go Insecure Cookie

   » ‎ Packet Storm Security Advisories
  web.go suffers from an insecure cookie vulnerability. Their cookie is modeled after Tornado which had the same issue reported on in 2010.

  Tags:  insecure web cookie vulnerability tornado  

• 9:23

  web.go Insecure Cookie

   » ‎ Packet Storm Security Recent Files
  web.go suffers from an insecure cookie vulnerability. Their cookie is modeled after Tornado which had the same issue reported on in 2010.

  Tags:  insecure web cookie vulnerability tornado  

• 9:23

  web.go Insecure Cookie

   » ‎ Packet Storm Security Misc. Files
  web.go suffers from an insecure cookie vulnerability. Their cookie is modeled after Tornado which had the same issue reported on in 2010.

  Tags:  insecure web cookie vulnerability tornado  

• January 26, 2011
• 0:00

  Vuln: AWCM 'awcm_theme' Cookie Parameter Local File Include Vulnerability

   » ‎ SecurityFocus Vulnerabilities
  AWCM 'awcm_theme' Cookie Parameter Local File Include Vulnerability

  Tags:  theme awcm cookie vulnerability  

• December 25, 2010
• 9:52

  Babil CMS Insecure Cookie Handling

   » ‎ Packet Storm Security Exploits
  Babil CMS suffers from an insecure cookie handling vulnerability.

  Tags:  insecure cookie cms babil vulnerability  

• 9:52

  Babil CMS Insecure Cookie Handling

   » ‎ Packet Storm Security Recent Files
  Babil CMS suffers from an insecure cookie handling vulnerability.

  Tags:  insecure cookie cms babil vulnerability  

• 9:52

  Babil CMS Insecure Cookie Handling

   » ‎ Packet Storm Security Misc. Files
  Babil CMS suffers from an insecure cookie handling vulnerability.

  Tags:  insecure cookie cms babil vulnerability  

• December 12, 2010
• 13:33

  Make your own cookie cutters this year

   » ‎ Hack a Day
  In case you needed another reason to build, borrow, or buy a 3D printer, here’s one way to design and print your own cookie cutters. [Nikolaus Gradwohl] put together a processing app that aims to make the design process a bit easier. So if you’ve never designed a printable object before, but can get your [...]

  Tags:  case year cookie nikolaus-gradwohl cookie-cutters 3d-printer home hacks  

• November 19, 2010
• 8:00

  Bugtraq: [eVuln.com] Cookie Auth Bypass in Hot Links SQL

   » ‎ SecurityFocus Vulnerabilities
  [eVuln.com] Cookie Auth Bypass in Hot Links SQL

  Tags:  evuln cookie com hot-links  

• August 16, 2010
• 9:00

  Bugtraq: Insecure secure cookie in Tornado

   » ‎ SecurityFocus Vulnerabilities
  Insecure secure cookie in Tornado

  Tags:  insecure secure cookie tornado  

• August 05, 2010
• 0:00

  Vuln: KDE Konqueror Cookie Domain Validation Vulnerability

   » ‎ SecurityFocus Vulnerabilities
  KDE Konqueror Cookie Domain Validation Vulnerability

  Tags:  kde cookie konqueror domain-validation vulnerability  

• 0:00

  Vuln: Apache Tomcat Cookie Quote Handling Remote Information Disclosure Vulnerability

   » ‎ SecurityFocus Vulnerabilities
  Apache Tomcat Cookie Quote Handling Remote Information Disclosure Vulnerability

  Tags:  tomcat cookie apache information-disclosure-vulnerability apache-tomcat  

• July 28, 2010
• 1:00

  AV Arcade v3 Cookie Authentication Bypass

   » ‎ 1337day (was: Inj3ct0r, 1337db)
  AV Arcade v3 Cookie Authentication Bypass

  Tags:  authentication arcade cookie cookie-authentication  

• July 17, 2010
• 0:34

  mybook-insecure.txt

   » ‎ Packet Storm Security Recent Files
  My Book suffers from an insecure cookie handling vulnerability.

  Tags:  txt cookie book vulnerability  

• 0:34

  mybook-insecure.txt

   » ‎ Packet Storm Security Exploits
  My Book suffers from an insecure cookie handling vulnerability.

  Tags:  txt cookie book vulnerability  

• July 16, 2010
• 1:00

  my book v1 (insecure Cookie Handling) Vulnerability

   » ‎ 1337day (was: Inj3ct0r, 1337db)
  my book v1 (insecure Cookie Handling) Vulnerability

  Tags:  book handling cookie vulnerability  

• July 06, 2010
• 0:00

  Vuln: Apache Tomcat Cookie Quote Handling Remote Information Disclosure Vulnerability

   » ‎ SecurityFocus Vulnerabilities
  Apache Tomcat Cookie Quote Handling Remote Information Disclosure Vulnerability

  Tags:  tomcat cookie apache information-disclosure-vulnerability apache-tomcat  

• June 11, 2010
• 0:00

  Vuln: AWCM 'awcm_lang' Cookie Parameter Local File Include Vulnerability

   » ‎ SecurityFocus Vulnerabilities
  AWCM 'awcm_lang' Cookie Parameter Local File Include Vulnerability

  Tags:  lang awcm cookie vulnerability  

• March 30, 2010
• 0:00

  Vuln: Apache Tomcat Cookie Quote Handling Remote Information Disclosure Vulnerability

   » ‎ SecurityFocus Vulnerabilities
  Apache Tomcat Cookie Quote Handling Remote Information Disclosure Vulnerability

  Tags:  tomcat cookie apache information-disclosure-vulnerability apache-tomcat  

• March 19, 2010
• 13:00

  islamic voice insecure Cookie Handling Vulnerability

   » ‎ 1337day (was: Inj3ct0r, 1337db)
  islamic voice insecure Cookie Handling Vulnerability

  Tags:  handling voice cookie islamic-voice vulnerability  

• March 13, 2010
• 9:00

  sql injection via cookie

   » ‎ darkc0de
  sql injection via cookie

  Tags:  injection sql cookie  

• March 10, 2010
• 19:00

  cookiemonster_v1.6.zip

   » ‎ Packet Storm Security Tools
  Cookie Monster is a cookie analysis tool written in Python. Cookie Monster will grab cookies from a host and assign each character a number. This number can be used to perform mathematical calculations on the differences in order to find a pattern and see if cookie prediction is possible.

  Tags:  number monster cookie cookie-monster mathematical-calculations analysis-tool  

• 19:00

  cookiemonster_v1.6.zip

   » ‎ Packet Storm Security Recent Files
  Cookie Monster is a cookie analysis tool written in Python. Cookie Monster will grab cookies from a host and assign each character a number. This number can be used to perform mathematical calculations on the differences in order to find a pattern and see if cookie prediction is possible.

  Tags:  number monster cookie cookie-monster mathematical-calculations analysis-tool  

• February 25, 2010
• 6:00

  Newbie CMS insecure cookie handling vulnerability

   » ‎ 1337day (was: Inj3ct0r, 1337db)
  Newbie CMS insecure cookie handling vulnerability

  Tags:  Newbie cookie cms vulnerability  

• February 23, 2010
• 5:00

  [Cookie Stealing] Yahoo XSS ??

   » ‎ darkc0de
  [Cookie Stealing] Yahoo XSS ??

  Tags:  yahoo stealing cookie xss  

• February 10, 2010
• 9:00

  ApartmentSearch SQL inject / insecure cookie handling vulnerabilities

   » ‎ 1337day (was: Inj3ct0r, 1337db)
  ApartmentSearch SQL inject / insecure cookie handling vulnerabilities

  Tags:  apartmentsearch sql cookie  

• 9:00

  AdultBannerExchange Insecure Cookie Handling Vulnerability

   » ‎ 1337day (was: Inj3ct0r, 1337db)
  AdultBannerExchange Insecure Cookie Handling Vulnerability

  Tags:  insecure adultbannerexchange cookie vulnerability  

• 9:00

  BannerExchange insecure cookie handling vulnerability

   » ‎ 1337day (was: Inj3ct0r, 1337db)
  BannerExchange insecure cookie handling vulnerability

  Tags:  vulnerability bannerexchange cookie  

• 9:00

  ClassifiedUltra SQL inject / insecure cookie handling vulnerabilities

   » ‎ 1337day (was: Inj3ct0r, 1337db)
  ClassifiedUltra SQL inject / insecure cookie handling vulnerabilities

  Tags:  sql classifiedultra cookie  

• 9:00

  phpMiniSite Insecure cookie handling vulnerability

   » ‎ 1337day (was: Inj3ct0r, 1337db)
  phpMiniSite Insecure cookie handling vulnerability

  Tags:  insecure phpminisite cookie vulnerability  

• February 09, 2010
• 19:00

  bannerexchange-insecure.txt

   » ‎ Packet Storm Security Recent Files
  BannerExchange suffers from an insecure cookie handling vulnerability.

  Tags:  txt bannerexchange cookie vulnerability  

• 19:00

  adultbannerexchange-insecure.txt

   » ‎ Packet Storm Security Recent Files
  AdultBannerExchange suffers from an insecure cookie handling vulnerability.

  Tags:  txt adultbannerexchange cookie vulnerability  

• 19:00

  bannerexchange-insecure.txt

   » ‎ Packet Storm Security Exploits
  BannerExchange suffers from an insecure cookie handling vulnerability.

  Tags:  txt bannerexchange cookie vulnerability  

• 19:00

  adultbannerexchange-insecure.txt

   » ‎ Packet Storm Security Exploits
  AdultBannerExchange suffers from an insecure cookie handling vulnerability.

  Tags:  txt adultbannerexchange cookie vulnerability  

• 17:00

  phpminisite-insecure.txt

   » ‎ Packet Storm Security Recent Files
  phpMiniSite suffers from an insecure cookie handling vulnerability.

  Tags:  txt phpminisite cookie vulnerability  

• 17:00

  phpminisite-insecure.txt

   » ‎ Packet Storm Security Exploits
  phpMiniSite suffers from an insecure cookie handling vulnerability.

  Tags:  txt phpminisite cookie vulnerability  

• February 01, 2010
• 19:00

  emirateshost-insecure.txt

   » ‎ Packet Storm Security Exploits
  EmiratesHost suffers from an insecure cookie handling vulnerability.

  Tags:  txt emirateshost cookie vulnerability  

• January 26, 2010
• 4:00

  Stealing Cookie With XSS

   » ‎ darkc0de
  Stealing Cookie With XSS

  Tags:  with stealing cookie  

• January 25, 2010
• 0:00

  Vuln: phShoutBox Cookie Security Bypass Vulnerability

   » ‎ SecurityFocus Vulnerabilities
  phShoutBox Cookie Security Bypass Vulnerability

  Tags:  phshoutbox cookie security cookie-security vulnerability