Cookie Security Flaw Affecting All Major Browsers

Oliver Lineham writes "My friend and I have found a security flaw in the implementation of cookies in Navigator, Internet Explorer, and Opera. The full details of this bug are on the Cookie Monster advisory, including a working demonstration. The problem is to do with the way the browsers restrict the "domain" setting on domains outside the US. There are several implications arising from this bug. "