UGN Security Forums
My ProfileMember DirectoryLogin
Search our ForumsView our FAQView our Site Rules
View our CalendarView our Active TopicsGo to our Main Page

UGN Security Store
 

Network Sites UGN Security, The GoNix Initiative, Elite Web Gamers, Back of the Web, EveryDay Helper, VNC Web Design & Development
December
Su M Tu W Th F Sa
1 2 3 4 5 6
7 8 9 10 11 12 13
14 15 16 17 18 19 20
21 22 23 24 25 26 27
28 29 30 31
Sponsored Links
Latest Postings
Latest Reviews
Topic Options
Rate This Topic
#7403 - 06/19/03 11:28 PM How much fun can u have with hijacked cookies?
TrayPoundHolder Offline
UGN Newbie

Registered: 06/19/03
Posts: 4
You hear people talk about deleting your cookies
for advertisement,security,etc? What can one do with someone elses cookies? Would someone actually waste their time to decipher cookies? I know that they store passwords for sites that require them but how?
_________________________
the best defense is an unbelivable offense

Top
Sponsored Links
      
#7404 - 06/20/03 04:21 AM Re: How much fun can u have with hijacked cookies?
sinetific Offline
nobody

Registered: 03/02/02
Posts: 815
Loc: Ann Arbor
Cookies contain different data about sessions and login information depending on the site, store information about your account when you last visited and have expiration dates in them. It depends on where the cookies are from and how they're implemented. Some are plain text everything in it is, passwords and all. Nowadays cookies use encryption for larger sites like msn or yahoo. Different cookies do different things, store information about your account and have expiration dates in them. Modifying them can give you access to things you wouldnt have normally. Look up 'cookie poisoning' on google you will learn alot about it.

for windows cookies are stored in C:\WINDOWS\Cookies\ for 9x or C:\Documents and Setting\(username)\Cookies\ in XP

Even linux systems use cookies and are vulnerable even though the way they use them is different, instead of individual files mozilla uses one file called cookies.txt (netscape is probably the same dunno about konquerer or the others).

This still ranks in the top 10 types of vulnerabilites.


Here's some links:

http://searchsecurity.techtarget.com/sDefinition/0,,sid14_gci861584,00.html

http://www.cgisecurity.com/lib/CookiePoisoningByline.pdf

Top

Moderator:  Infinite 
Featured Member
Registered: 02/28/02
Posts: 7193
Forum Stats
2152 Members
46 Forums
36289 Topics
71459 Posts

Max Online: 1567 @ 04/25/10 05:20 AM
Top Posters
UGN Security 29450
Gremelin 7193
§intå× 3255
SilentRage 1273
Ice 1146
pergesu 1136
Infinite 1041
jonconley 955
Girlie 908
unreal 860
Newest Members
cdefgh368568, HushHush, golqm, Tim050, Gecko666
2151 Registered Users
Who's Online
0 registered (), 247 Guests and 302 Spiders online.
Key: Admin, Global Mod, Mod
Latest News


Donate
  Get Firefox!
Get FireFox!