SEARCH RESULTS
 
Showing 1-10 of 27 records
 
Expand article

WordPress 2.5 Cookie Forging Explained

2008-04-25 21:46:49 by Chris Eng in Zero in a bit
 
...cookie integrity bug that would allow an attacker to impersonate other users, including WordPress admins, by manipulating the contents of an HTTP cookie. Whenever I read about a vulnerability predicated on the user identity being embedded into a client-side token (as opposed to a pseudorandom session identifier), I like to dig a little deeper...
 
Tags: cookie, wordpress authentication cookie, authentication cookie, cookie integrity bug, hash, hash hmac, user, user identity, maintain cookie uniqueness
 
 
 
 
Expand article

Wordpress 2.5 cookie integrity protection vulnerability

2008-04-25 16:03:19 by Steven J. Murdoch in Light Blue Touchpaper
 
...cookies are generated. The authentication code was substantially overhauled for Wordpress 2.5, in part to deal with security problems in the password database. Now, the authentication cookies take the form of wordpress . COOKIEHASH = USERNAME . | . EXPIRY TIME . | . MAC Where: COOKIEHASH MD5 hash of the site URL (to maintain cookie...
 
Tags: cookie, time, user expiry time, wordpress, secure cookie protocol, expiry time, vulnerability, username, maintain cookie uniqueness
 
 
 
 
Expand article

XSS fortune cookie

The Article has images
2008-09-02 16:10:00 by Russ McRee in HolisticInfoSec.org
...cookie 1) Ask the mighty Google oracle who might be able to tell you your fortune http://www.google.com/search?hl=en&q=tell+my+fortune&btnG=Search&lr=lang en 2) Select one of the sponsored links; in this case I chose SpritualExperts.com 3) Pick a variable. I settled for banid 4) Ask it if it has a cookie for you...
 
Tags: xss fortune cookie, cookie, fortune, google, mighty google oracle, extremely bad joke, compsychic readingpsychic, chose spritualexperts, play nice
 
 
 
 
Expand article

Hardened stateless session cookies

2008-05-16 12:40:30 by Steven J. Murdoch in Light Blue Touchpaper
 
...cookie debacle was that the authors invented their own password hashing and cookie generation scheme. This is generally a bad idea, since its hard even for experts to get these right. Instead, whenever possible, a well-studied proposal should be chosen. It is for this reason that I suggested the phpass library for password hashing, and the Fu...
 
Tags: scheme, cookie generation scheme, cookie, cookie authentication schemes, cookies, stateless session cookies, fake cookie, cookie authentication key, authentication database
 
 
 
 
Expand article

Twisty little passages, all alike

2008-05-18 19:29:56 by Richard Clayton in Light Blue Touchpaper
 
...cookies (which didnt matter much because Phorm specifically uses first-party cookies), and Id managed to reference RFC2695 rather than RFC2965 In my original document, Id waved my hands a little bit about how the system worked if people had blocked cookies for specific domains, and so I swapped some more email with Phorm to better understand,...
 
Tags: cookie, phorm identifier cookie, identifier, phorm identifier, phorm, phorm fools, phorm unique identifier, phorm system redirects, phorm system breaks
 
 
 
 
Expand article

Google Changes Privacy Policy

2007-03-15 08:31:00 by Eric Marvets in The Security Samurai
 
...cookies (the number one feature to choose FireFox over IE); a practice that was instigated when I learned Google sent the same cookie from each machine when a search was made. I use Tor and Privoxy to achieve true anonymity when researching certain topics. I will never use their desktop client However, two pieces of good news have come out...
 
Tags: privacy, google, privacy concerns, policy, google chat, financial data, data, google desktop, users privacy
 
 
 
 
Expand article

SDL and Web 2.0

2008-02-28 22:26:00 by sdl in The Security Development Lifecycle
 
...cookie If the wiki accepts this content from Eve, then anyone who looks at the wiki entry will have their browser cookie stolen and sent to Eve at evil.com. The cookie could potentially contain login credentials or other sensitive information, allowing Eve to impersonate her victim and essentially commit a form of identity theft The attack...
 
Tags: web, site, chriss web site, mashups, web mashups, site cookies, persistent cross-site, cookies, benefit anyones web
 
 
 
 
Expand article

XSF & XSS: Double your pleasure, double your fun

The Article has images
2008-09-21 21:00:00 by Russ McRee in HolisticInfoSec.org
...cookie data http://hostedjobs.openhire.com/epostings/jobs/submit.cfm?fuseaction=dspjob&id=23&jobid=130527&company id=15624&version=1&source=ONLINE&JobOwner=%22%3E%3CSCRIPT%3Ealert(document.cookie)%3C/SCRIPT%3E&level=levelid3&levelid3=18247&parent=St.%20Louis%20Corporate%20Headquarters;;;Information%20Technology;;;Security&startflag=3 Screen...
 
Tags: openhire code, openhire, original openhire cross-site, scottrade site, scottrade, cross-site, site, secure code, code
 
 
 
 
Expand article

Proxy Caches are a Challenging Threat to Internet Security

2008-10-05 10:41:52 by Tim Bass in The Complex Event Processing Blog
 
...Cookie HTTP headers, for example. Caching proxy servers should obtain a fresh cookie for the each new client request. Ideally, proxy caches should not cache session management cookies and distribute cached cookies to multiple clients. However, application developers cannot assume that proxy caches are well behaved, especially for applications...
 
Tags: proxy caches, security, web developers, developers, internet, application developers, security flaws similar, session management code, code
 
 
 
 
Expand article

New Year's Resolutions for choosing online retailers

2007-12-20 09:31:28 by Andras Cser in Security & Risk Management
 
...cookie on the users browser and uses the cookie to display a user-selected image the next time logs in. This method authenticates the website to the user (mutual authentication Vendors: Arcot Systems, TriCipher, Oracle Adaptive Authentication Manager (Bharosa acquisition), Entrust, RSA Security/PassMark Software IP Geolocation (inexpensive,...
 
Tags: user inconvenience,