On 01/03/2003 07:57:08 PM Edmund Lian wrote: >There is one scenario that is a hijack situation though... suppose you design a >site that allows users to post URLs that other users can click on. To hijack >sessions, a rogue user only has to post a URL that takes unsuspecting users to >the other site. The victim(s) session ID is now available at the other site as >part of the HTTP Referer header.
Oh yes, there is another even simpler way to get at a URL-encoded session ID... the rogue user only has to post an image with a href pointing back to their computer. This way, a victim doesn't even have to click on a URL to be exposed, he/she only has to view a message with the externally-sourced image. ...Edmund. ------------------------------------------------------- This sf.net email is sponsored by:ThinkGeek Welcome to geek heaven. http://thinkgeek.com/sf _______________________________________________ Webware-discuss mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/webware-discuss
