Printed from http://www.electronista.com

Research shows Internet Explorer open to 'cookiejacking'

updated 07:55 pm EDT, Wed May 25, 2011

All sites said to be vulnerable

An independent security researcher, Rosario Valotta, suggests Internet Explorer is vulnerable to attacks that target the private data stored in HTTP cookies. The flaw is said to leave users open to what Valotta calls "cookiejacking," a method that hackers can reportedly use to access a cookie and log into victims' various online accounts.

The vulnerability is said to require users to drag and drop an item across the screen. Volatta claims to have created a Facebook app that exploits the flaw by requiring users to virtually undress a woman, enabling him to amass 80 cookies from his total list of just 150 friends.

Microsoft suggests the requirement for user interaction is unlikely to be used in an actual hacking scenario, company spokesman Jerry Bryant told Reuters.

The vulnerability is said to potentially affect all versions of Internet Explorer running on any Windows edition.



By Electronista Staff
Post tools:

TAGS :

toggle

Comments

Login Here

Not a member of the MacNN forums? Register now for free.

toggle

Network Headlines

toggle

Most Popular

Advertisement

Recent Reviews

Epson PowerLite Home Cinema 3500 projector

Trying to find the perfect projector for a home theater can be tricky, as there are bountiful options on the market from a large numbe ...

Thecus N2310 NAS

For every computer user, there comes a point of critical mass in data storage. When it hits, external hard drives, USB sticks and DVD ...

iRig Pads

When it comes to mobile music products, IK Multimedia has positioned itself as one of the top suppliers. Right from the early days of ...

Advertisement

toggle

Most Commented

 
toggle

Popular News