Cookiemonster attack

The CookieMonster attack is a man-in-the-middle exploit where a third party can gain HTTPS cookie data when the "Encrypted Sessions Only" property is not properly set. This could allow access to sites with sensitive personal or financial information.^[1]

Users of the World Wide Web can reduce their exposure to CookieMonster attacks by avoiding websites that are vulnerable to these attacks. Certain web browsers make it possible for the user to establish which sites these are. For example, users of the Firefox browser can go to the Privacy tab in the Preferences window, and click on 'Show Cookies.' For a given site, inspecting the individual cookies for the top level name of the site, and any subdomain names, will reveal if 'Send For: Encrypted connections only,' has been set. If it has, the user can test for the site's vulnerability to CookieMonster attacks by deleting these cookies and visiting the site again. If the site still allows the user in, the site is vulnerable to CookieMonster attacks.

Notes

References

• http://www.theregister.co.uk/2008/09/11/cookiemonstor_rampage/
• http://www.informationweek.com/news/security/vulnerabilities/showArticle.jhtml?articleID=210601197
• http://fscked.org/blog/cookiemonster-core-logic-configuration-and-readmes

This World Wide Web-related article is a stub. You can help Wikipedia by expanding it.v · Categories: Web security exploits Computer network stubs Malware stubs World Wide Web stubs Wikimedia Foundation. 2010. Игры ⚽ Нужно сделать НИР? Nefret Faisal Ali 18+ © Academic, 2000-2024 Contact us: Technical Support, Advertising Dictionaries export, created on PHP, Joomla, Drupal, WordPress, MODx. Mark and share Search through all dictionaries Translate… Search Internet Share the article and excerpts Direct link … Do a right-click on the link above and select “Copy Link”