Lucene search
K

125 matches found

securityvulns
securityvulns
added 2006/08/15 12:0 a.m.706 views

Technical note: under some conditions, it's possible to steal HTTP credentials using Flash

Technical note: under some conditions, it's possible to steal HTTP credentials using Flash requires IE + some transparent proxies or virtual hosting The method described here is pretty simple. It works though only on HTTP not HTTPS credentials. Also, it works only when the client browses using IE...

Exploits0
CERT
CERT
added 2004/10/12 12:0 a.m.25 views

Multiple networking devices fail to set the "Secure" attribute of a cookie

Overview Multiple vendors' networking devices fail to set the "Secure" cookie attribute and could disclose sensitive information about a user's HTTP session. Description Many networking devices provide a built-in web server, which may support the HTTPS protocol. When a user logs into the device...

2.1CVSS5.6AI score0.00433EPSS
Exploits0References1
securityvulns
securityvulns
added 2002/09/11 12:0 a.m.40 views

Secure cookie access in Knoqueror

Cookie with secure flag may be sent via unsecured channel...

2.6AI score
Exploits0References1Affected Software1
securityvulns
securityvulns
added 2002/09/11 12:0 a.m.25 views

KDE Security Advisory: Secure Cookie Vulnerability

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 KDE Security Advisory: Secure Cookie Vulnerability Original Release Date: 2002-09-08 URL: http://www.kde.org/info/security/advisory-20020908-1.txt 0. References None. 1. Systems affected: Konqueror in KDE 3.0, KDE 3.0.1 and KDE 3.0.2. KDE 2.2.2 and KD...

0.2AI score
Exploits0
securityvulns
securityvulns
added 2000/10/24 12:0 a.m.32 views

Проблемы с Secure Session Id в IIS

При использовании защищенного соединения не генируется Secure Cookie для передачи Session Id, вместо это используется тот же ID что и для незащищенного соединения, что позволяет перехватить защищенное соединение...

0.6AI score
Exploits0References2Affected Software1
Rows per page
Query Builder