The Dangers of Improper Cookie Use

Posted by CmdrTaco on Monday December 18, 2006 @06:22AM

shifted89 writes "Over the last year, the security community have exposed web application security for what it is — extremely lacking. However, for all the focus on XSS, CSRF, history stealing, etc., not much attention has been given to the cookie. Unfortunately, cookie misuse can be just as dangerous, if not more so than XSS attacks and InformIT illustrates why. In short, the author clearly demonstrates what can happen when a website improperly uses cookies for customer tracking — including a working illustration."

2 of 191 comments (clear)

Min score:

Reason:

Sort:

Re:Obligatory by silentounce · 2006-12-18 07:15 · Score: 0, Offtopic

Tell that to my wife. I'm sorry. My wife is taking her PMS out on me, and now I'm taking it out on you. It's the circle of life. Beautiful, no?

--
There are many tongues to talk, and but few heads to think. -Victor Hugo
want a cookie by erbbysam · 2006-12-18 07:26 · Score: 0, Offtopic

good website:want a cookie? you:not from your site! good website:alright, I'll live on. bad website:want a cookie? you:not from your website bad website:that wasn't a question. We're not going to work for you now.