2. Cross-domain Referer leakage
3. Cross-domain script include
4. Cookie without HttpOnly flag set
5. Content type incorrectly stated
Severity: | High |
Confidence: | Certain |
Host: | http://mynews.apple.com |
Path: | /cgi-bin/WebObjects |
POST /cgi-bin/WebObjects Host: mynews.apple.com Proxy-Connection: keep-alive Referer: http://mynews.apple.com Content-Length: 234 Cache-Control: max-age=0 Origin: http://mynews.apple.com User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.30 (KHTML, like Gecko) Chrome/12.0.742.122 Safari/534.30 Content-Type: application/x-www-form Accept: text/html,application Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: s_vi=[CS]v1|26E72CC1 1.21.3.3.1=Subscribe&1.21 ...[SNIP]... |
HTTP/1.1 302 Apple Date: Sat, 16 Jul 2011 14:25:31 GMT Server: Apache location: 6b61f 9c98044096b: config = f! connection: close content-length: 0 Content-Type: text/html; charset=UTF-8 |
Severity: | Information |
Confidence: | Certain |
Host: | http://mynews.apple.com |
Path: | /cgi-bin/WebObjects |
GET /cgi-bin/WebObjects Host: mynews.apple.com Proxy-Connection: keep-alive Referer: http://www.apple.com User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.30 (KHTML, like Gecko) Chrome/12.0.742.122 Safari/534.30 Accept: text/html,application Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: s_vi=[CS]v1|26E72CC1 |
HTTP/1.1 200 Apple Date: Sat, 16 Jul 2011 02:35:45 GMT Server: Apache set-cookie: CookieURLDescSubs=http%3A connection: close Content-Length: 19277 Content-Type: text/html; charset=UTF-8 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head> ...[SNIP]... </head> <script type="text/javascript" src="http://a248.e.akamai <script type="text/javascript" src="http://a248.e.akamai <script type="text/javascript" src="http://a248.e.akamai <script type="text/javascript" src="http://a248.e.akamai ...[SNIP]... <h1> <img alt="My Apple ID" src="http://a248.e.akamai ...[SNIP]... </script><script type="text/javascript" src="http://yui.yahooapis <script type="text/javascript" src="http://yui.yahooapis <script type="text/javascript" src="http://yui.yahooapis <script type="text/javascript" src="http://yui.yahooapis ...[SNIP]... |
Severity: | Information |
Confidence: | Certain |
Host: | http://mynews.apple.com |
Path: | /cgi-bin/WebObjects |
GET /cgi-bin/WebObjects Host: mynews.apple.com Proxy-Connection: keep-alive Referer: http://mynews.apple.com/ User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.30 (KHTML, like Gecko) Chrome/12.0.742.122 Safari/534.30 Accept: text/html,application Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: s_vi=[CS]v1|26E72CC1 |
HTTP/1.1 200 Apple Date: Sat, 16 Jul 2011 02:34:42 GMT Server: Apache set-cookie: CookieURLDescSubs=http%3A connection: close Content-Length: 19277 Content-Type: text/html; charset=UTF-8 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head> ...[SNIP]... </head> <script type="text/javascript" src="http://a248.e.akamai <script type="text/javascript" src="http://a248.e.akamai <script type="text/javascript" src="http://a248.e.akamai <script type="text/javascript" src="http://a248.e.akamai ...[SNIP]... </script><script type="text/javascript" src="http://yui.yahooapis <script type="text/javascript" src="http://yui.yahooapis <script type="text/javascript" src="http://yui.yahooapis <script type="text/javascript" src="http://yui.yahooapis ...[SNIP]... |
Severity: | Information |
Confidence: | Certain |
Host: | http://mynews.apple.com |
Path: | /cgi-bin/WebObjects |
GET /cgi-bin/WebObjects Host: mynews.apple.com Proxy-Connection: keep-alive Referer: http://mynews.apple.com/ User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.30 (KHTML, like Gecko) Chrome/12.0.742.122 Safari/534.30 Accept: text/html,application Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: s_vi=[CS]v1|26E72CC1 |
HTTP/1.1 200 Apple Date: Sat, 16 Jul 2011 02:34:42 GMT Server: Apache set-cookie: CookieURLDescSubs=http%3A connection: close Content-Length: 19277 Content-Type: text/html; charset=UTF-8 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head> ...[SNIP]... |
Severity: | Information |
Confidence: | Firm |
Host: | http://mynews.apple.com |
Path: | /abientot/global/nav |
GET /abientot/global/nav Host: mynews.apple.com Proxy-Connection: keep-alive Referer: http://mynews.apple.com User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.30 (KHTML, like Gecko) Chrome/12.0.742.122 Safari/534.30 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: s_vi=[CS]v1|26E72CC1 |
HTTP/1.1 200 OK Date: Sat, 16 Jul 2011 02:35:49 GMT Server: Apache Last-Modified: Mon, 31 Jan 2011 08:36:11 GMT ETag: "12100-c247-49b204ed9d4c0 Accept-Ranges: bytes Content-Length: 49735 Content-Type: application/x-javascript // = AC = // Apple core helper functions: if (typeof(AC) == 'undefined'|| typeof(AC) == 'object') { AC = {}; } // == HTML5 <nav> == // Add the HTML5 nav element for future proof-ness. document.create ...[SNIP]... |