|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
From: Eduardo Caballero (sedyer
chi.spunge.org)Date: Thu May 16 2002 - 08:39:26 CDT
-----BEGIN PGP SIGNED MESSAGE-----
Saludos:
This is my first post to vuln-dev list.
Well, the cookie of audiogalaxy (www.audiogalaxy.com) on the user
system,
reveal the username and password in plain text. This maybe a small
problem,
but it will better even steal the session cookie; i think.
I take advantage of this opportunity, to know your opinion regarding
this
topic.
Does anybody have a mean to prevent this?. Encription, ciphertext?.
Thank you for the answers.
ReYDeS
P.D: Excuse my english. :)
-----BEGIN PGP SIGNATURE-----
Version: PGPfreeware 5.0i for non-commercial use
Charset: noconv
iQEVAwUBPOOs6SW7thlnidfFAQFUWAgA4xtI/xRu2rQ1yi8q1He0UOfD8gCWExYr
WplE3aHHca1Ri+wsjAyi107OrG0OuKzvBXjS5LuY9z1XIxULzUSPbW80GTpaLygS
GUlEHeU8cr3DNZ0c2LgoCnehgoiH6ZocxfElkbo+TE5EQVN4e4vCfYT8/gHIAvLK
e4GiOJMhO8dsj2e05H2MWB2PY4rB9021YjdkX4GcnCN7FFtDnSF3tRwlDc/RoPa1
x/va8wLYljk3ZNFj5zL6HpXp+oOonmwGvWylHC70EzN2F+8fph7vwtLptk2oQ62S
nYUiNJO+ShofQYpBbaSCgmVzJXRmMykS+njiftWDq6+k/TRM9YY6AQ==
=omTU
-----END PGP SIGNATURE-----
. . .
Eduardo Caballero | ReYDeSBigFoot.com
RareGaZz-Team Member | http://RareGaZz.com.ar
Security Wari Projects Member | (SWP)
ICQ: 139649191
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]