Results 1 to 3 of 3

Thread: Apache HttpOnly Cookie Disclosure

Hybrid View

  1. #1
    Just burned his ISO
    Join Date
    Oct 2012
    Posts
    3

    Default Apache HttpOnly Cookie Disclosure

    Hi, I'm new in this forum and I don't speak english very well so sorry for the mistakes.

    Today I made a vulnerability scanner with Nessus and I discovered the following vulnerability:

    httpOnly Cookie Disclosure (CVE: 2012-0053)

    In the website http://www.exploit-db.com/search/ there is an exploit...but I don't have understad why this

    vulnerability is dangerous and how I must use this code for an exploit.

    Thanks for the answers

  2. #2
    My life is this forum thorin's Avatar
    Join Date
    Jan 2010
    Posts
    2,629

    Default Re: Apache HttpOnly Cookie Disclosure

    I'm a compulsive post editor, you might wanna wait until my post has been online for 5-10 mins before quoting it as it will likely change.

    I know I seem harsh in some of my replies. SORRY! But if you're doing something illegal or posting something that seems to be obvious BS I'm going to call you on it.

  3. #3
    Just burned his ISO
    Join Date
    Oct 2012
    Posts
    3

    Default Re: Apache HttpOnly Cookie Disclosure

    Thanks a lot. I hope to be useful for you in the future. Good day

Similar Threads

  1. responsible disclosure
    By scottm99 in forum BackTrack 5 Experts Section
    Replies: 0
    Last Post: 12-29-2011, 03:52 PM
  2. inspathx - Path Disclosure Finder
    By r3m0t3 in forum Tool Requests
    Replies: 3
    Last Post: 03-23-2011, 05:39 AM
  3. stack cookie
    By badc0re in forum Experts Forum
    Replies: 0
    Last Post: 02-01-2011, 10:35 AM
  4. Cookie Monster
    By icebreaker101010 in forum OLD Newbie Area
    Replies: 14
    Last Post: 10-19-2008, 07:20 AM

Tags for this Thread

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •