2 matches found
Mozilla: Bypassing Secure Context restriction for cookies with __Host and __Secure prefix
A flaw was found in Mozilla. The Mozilla Foundation Security Advisory describes the issue that by injecting a cookie with certain special characters, an attacker on a shared subdomain, which is not a secure context, could set and overwrite cookies from a secure context, leading to session fixatio...
Adding Akamai Shared Domains to the Public Suffix List
Akamai plans to submit a number of our shared domains to the “PRIVATE” section of the Public Suffix List PSL at some point on or after March 31, 2022. The PSL contains multi-party domain suffixes and is used by a wide range of client software for example, web browsers to implement policy decision...