[32485] in bugtraq


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

Re: Apple Safari 1.1 (v100)

daemon@ATHENA.MIT.EDU (Christian Horchert)
Wed Nov 19 17:22:12 2003

In-Reply-To: <20031118172833.86096.qmail@web60510.mail.yahoo.com>
Mime-Version: 1.0 (Apple Message framework v606)
Content-Type: text/plain; charset=US-ASCII; format=flowed
Message-Id: <B8E0DD78-1AD0-11D8-BDB4-000393754328@veedev.de>
Content-Transfer-Encoding: 7bit
Cc: bugtraq@securityfocus.com
From: Christian Horchert <chorchert@veedev.de>
Date: Wed, 19 Nov 2003 21:41:16 +0100
To: Austin Gilbert <austin@breakingrobots.net>

Hello Austin!

Am 18.11.2003 um 18:28 schrieb Austin Gilbert:
> it appears that Apple's Safari is vulnerable to the
> old Mozilla/IE cookie theft vulnerability outlined by
> Marc Slemko
> http://alive.znep.com/~marcs/security/mozillacookie/

This seems to even work if cookies are disabled.
Stupid, really!


   Christian


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

[32485] in bugtraq

Re: Apple Safari 1.1 (v100)

daemon@ATHENA.MIT.EDU (Christian Horchert)Wed Nov 19 17:22:12 2003

daemon@ATHENA.MIT.EDU (Christian Horchert)
Wed Nov 19 17:22:12 2003