Pantek Library

Hosting Provided By

CybrHost

High Speed Hosting

Hijacking URL Encoded Session IDs using Referer Logs

From: Bob Lee <crazybob(at)crazybob.org>
Date: Sat Nov 23 2002 - 15:38:11 EST

Is there anything on CERT about the fact that URL encoded session IDs get passed to referenced sites in the HTTP referer header?

Thanks,
Bob Received on Sun Nov 24 16:32:24 2002

This message: [ Message body ]
Next message: securityarchitect(at)hush.com: "Re: web appliaction security products (AKA application firewalls)"
Previous message: Dave Aitel: "Re: web appliaction security products (AKA application firewalls)"
Next in thread: zeno: "Re: Hijacking URL Encoded Session IDs using Referer Logs"
Reply: zeno: "Re: Hijacking URL Encoded Session IDs using Referer Logs"

Contemporary messages sorted: [ By Date ] [ By Thread ] [ By Subject ] [ By Author ] [ By messages with attachments ]

This archive was generated by hypermail 2.1.8 : Wed Aug 23 2006 - 14:07:44 EDT

Contact Us Legal Notices Order Services Online
Pantek Home Privacy Policy IT news Site Map Pantek Library