Your browser does not seem to support CSS. If images appear below, please disregard them.
It appears that you're running an Ad-Blocker. This site is monetized by Advertising and by User Donations; we ask that if you find this site helpful that you whitelist us in your Ad-Blocker, or make a Donation to help aid in operating costs.
Previous Thread
Next Thread
Print Thread
Rate This Thread
#7403 - 06/20/03 03:28 AM How much fun can u have with hijacked cookies?  
Joined: Jun 2003
Posts: 4
TrayPoundHolder Offline
UGN Newbie
TrayPoundHolder  Offline
UGN Newbie

Joined: Jun 2003
Posts: 4
You hear people talk about deleting your cookies
for advertisement,security,etc? What can one do with someone elses cookies? Would someone actually waste their time to decipher cookies? I know that they store passwords for sites that require them but how?


the best defense is an unbelivable offense
Sponsored Links
#7404 - 06/20/03 08:21 AM Re: How much fun can u have with hijacked cookies?  
Joined: Mar 2002
Posts: 815
sinetific Offline
nobody
sinetific  Offline
nobody

Joined: Mar 2002
Posts: 815
Ann Arbor
Cookies contain different data about sessions and login information depending on the site, store information about your account when you last visited and have expiration dates in them. It depends on where the cookies are from and how they're implemented. Some are plain text everything in it is, passwords and all. Nowadays cookies use encryption for larger sites like msn or yahoo. Different cookies do different things, store information about your account and have expiration dates in them. Modifying them can give you access to things you wouldnt have normally. Look up 'cookie poisoning' on google you will learn alot about it.

for windows cookies are stored in C:\WINDOWS\Cookies\ for 9x or C:\Documents and Setting\(username)\Cookies\ in XP

Even linux systems use cookies and are vulnerable even though the way they use them is different, instead of individual files mozilla uses one file called cookies.txt (netscape is probably the same dunno about konquerer or the others).

This still ranks in the top 10 types of vulnerabilites.


Here's some links:

http://searchsecurity.techtarget.com/sDefinition/0,,sid14_gci861584,00.html

http://www.cgisecurity.com/lib/CookiePoisoningByline.pdf


Member Spotlight
Crime
Crime
SC, usa
Posts: 506
Joined: March 2002
Show All Member Profiles 
Forum Statistics
Forums45
Topics47,470
Posts82,640
Average Daily Posts7
Members2,159
Most Online1,567
Apr 25th, 2010
Latest Postings
Top Posters(All Time)
UGN Security 40,634
Gremelin 7,195
§intå× 3,255
SilentRage 1,273
Ice 1,146
pergesu 1,136
Infinite 1,041
jonconley 955
Girlie 908
unreal 860
Top Liked Users (All Time)
§intå× Likes: 1
Cold Sunn Likes: 1
Crime Likes: 1
Cyrez Likes: 1
Ghost Likes: 1
Gremelin Likes: 4
Ice Likes: 1
unreal Likes: 1
Top Liked Users (30 Days)
No Data Found
Powered by UBB.threads™ PHP Forum Software 7.6.0
(Snapshot build 20160902)