Nmap Security Scanner

Intro

Ref Guide

Install Guide

Download

Changelog

Book

Docs
Security Lists

Bugtraq

Basics

More
Security Tools

More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:

Bugtraq: Imail Cookie Vulnerability (unhashed)

Imail Cookie Vulnerability (unhashed)

From: <Sintigan_at_insecure.net>
Date: 5 Jul 2005 04:03:32 -0000

('binary' encoding is not supported, stored as-is) Neither Regular or secure mode of Imail properly give out a hash on cookies leaving the cookies straight readable to any onlookers.

No exploit is needed
POC:

"IMail_UserId
1006332dgd2_at_Someserver"
--------------------------
"IMail_password
1234"

Straight From Cookie ^^ (edited to protect user)

Shoutz to Dcrab, Infinite, j0X, DjPc, Ch4r, Raven, FPA, woody, elohimus, kurupt3k, and the rest i forgot i still got love for :P
Received on Jul 05 2005

This message: [ Message body ]
Next message: Robert Foxworth: "Re: /dev/random is probably not"
Previous message: ZATAZ Audits: "ekg insecure temporary file creation and arbitrary code execution"
Next in thread: Christophe Vandeplas: "Re: Imail Cookie Vulnerability (unhashed)"
Reply: Christophe Vandeplas: "Re: Imail Cookie Vulnerability (unhashed)"

Contemporary messages sorted: [ by date ] [ by thread ] [ by subject ] [ by author ] [ by messages with attachments ]