Report generated by Hoyt LLC Research at Sat Nov 20 12:27:25 CST 2010.


Cross Site Scripting Reports | Hoyt LLC Research

Loading

1. Cross-site scripting (reflected)

2. Cookie scoped to parent domain

3. Cross-domain Referer leakage

3.1. http://www.bloomberg.com/

3.2. http://www.bloomberg.com/apps/news

3.3. http://www.bloomberg.com/apps/news

3.4. http://www.bloomberg.com/apps/quote

4. Cross-domain script include

4.1. http://www.bloomberg.com/

4.2. http://www.bloomberg.com/about/

4.3. http://www.bloomberg.com/about/careers/

4.4. http://www.bloomberg.com/about/contact/

4.5. http://www.bloomberg.com/about/pressroom/

4.6. http://www.bloomberg.com/apps/feedback

4.7. http://www.bloomberg.com/apps/news

4.8. http://www.bloomberg.com/apps/quote

4.9. http://www.bloomberg.com/bloomberg-web-news

4.10. http://www.bloomberg.com/blp.video/live

4.11. http://www.bloomberg.com/entrepreneurs/

4.12. http://www.bloomberg.com/help.html

4.13. http://www.bloomberg.com/leaders/

4.14. http://www.bloomberg.com/markets-magazine/

4.15. http://www.bloomberg.com/markets/

4.16. http://www.bloomberg.com/markets/commodities/futures/

4.17. http://www.bloomberg.com/markets/currencies/

4.18. http://www.bloomberg.com/markets/economic-calendar/

4.19. http://www.bloomberg.com/markets/etfs/

4.20. http://www.bloomberg.com/markets/mutual-funds/top-funds/us/

4.21. http://www.bloomberg.com/markets/rates-bonds/government-bonds/us/

4.22. http://www.bloomberg.com/markets/stocks/

4.23. http://www.bloomberg.com/markets/stocks/futures/

4.24. http://www.bloomberg.com/markets/stocks/world-indexes/americas/

4.25. http://www.bloomberg.com/markets/stocks/world-indexes/asia-pacific/

4.26. http://www.bloomberg.com/markets/stocks/world-indexes/europe-africa-middle-east/

4.27. http://www.bloomberg.com/mobile/

4.28. http://www.bloomberg.com/muse/

4.29. http://www.bloomberg.com/navigation

4.30. http://www.bloomberg.com/news/

4.31. http://www.bloomberg.com/news/2010-11-07/india-s-deadly-diabetes-scourge-cuts-down-millions-rising-to-middle-class.html

4.32. http://www.bloomberg.com/news/2010-11-09/fidelity-s-bolton-defies-china-bears-with-27-new-fund-return.html

4.33. http://www.bloomberg.com/news/2010-11-11/merrill-banker-indicted-for-illegal-transfers-of-funds-says-he-s-scapegoat.html

4.34. http://www.bloomberg.com/news/2010-11-12/specialty-drugmaker-sinobiopharma-takes-on-big-pharma-in-china.html

4.35. http://www.bloomberg.com/news/2010-11-16/senate-s-durbin-not-very-optimistic-bush-era-tax-cuts-will-be-extended.html

4.36. http://www.bloomberg.com/news/2010-11-17/home-ownership-gets-harder-for-americans-as-lenders-restrict-fha-mortgages.html

4.37. http://www.bloomberg.com/news/2010-11-17/merck-drug-improves-cholesterol-without-safety-risk-of-pfizer-s-product.html

4.38. http://www.bloomberg.com/news/2010-11-17/panasonic-to-boost-hiring-at-overseas-operations-next-year.html

4.39. http://www.bloomberg.com/news/2010-11-18/beachbody-thinking-beyond-the-infomercial.html

4.40. http://www.bloomberg.com/news/2010-11-18/clinton-to-offer-blueprint-for-more-staff-conflict-prevention.html

4.41. http://www.bloomberg.com/news/2010-11-18/could-bowling-strike-it-big-in-times-square-.html

4.42. http://www.bloomberg.com/news/2010-11-18/fidelity-s-junk-bond-king-notkin-prefers-cheap-stocks-as-debt-rally-dies.html

4.43. http://www.bloomberg.com/news/2010-11-18/mark-to-make-believe-perfumes-rotten-loans-commentary-by-jonathan-weil.html

4.44. http://www.bloomberg.com/news/2010-11-18/only-apple-haters-can-love-samsung-galaxy-tab-rich-jaroslovsky.html

4.45. http://www.bloomberg.com/news/2010-11-18/pfizer-bristol-myers-halt-trial-of-experimental-blood-thinner-on-bleeding.html

4.46. http://www.bloomberg.com/news/2010-11-18/surging-food-prices-likely-to-outlast-china-caps-chart-of-the-day.html

4.47. http://www.bloomberg.com/news/2010-11-19/-lost-john-osborne-play-returns-angry-young-man-john-simon.html

4.48. http://www.bloomberg.com/news/2010-11-19/amgen-s-bone-drug-denosumab-cleared-to-treat-fractures-in-cancer-patients.html

4.49. http://www.bloomberg.com/news/2010-11-19/apple-may-introduce-thinner-ipad-tablet-early-next-year-analysts-predict.html

4.50. http://www.bloomberg.com/news/2010-11-19/bankrupt-owner-of-lipstick-building-can-use-cash-update1-.html

4.51. http://www.bloomberg.com/news/2010-11-19/bernanke-takes-defense-of-monetary-stimulus-abroad-turns-tables-on-china.html

4.52. http://www.bloomberg.com/news/2010-11-19/boston-scientific-to-buy-full-control-of-sadra-medical-update3-.html

4.53. http://www.bloomberg.com/news/2010-11-19/california-texas-florida-new-york-report-jobs-gains-as-economy-recovers.html

4.54. http://www.bloomberg.com/news/2010-11-19/camilla-could-become-queen-prince-charles-tells-nbc-network-in-interview.html

4.55. http://www.bloomberg.com/news/2010-11-19/cleopatra-outfoxed-her-brother-husband-by-seducing-caesar-lewis-lapham.html

4.56. http://www.bloomberg.com/news/2010-11-19/cox-communications-takes-on-at-t-verizon-with-mobile-offering.html

4.57. http://www.bloomberg.com/news/2010-11-19/crude-heads-for-weekly-loss-after-china-orders-banks-to-increase-reserves.html

4.58. http://www.bloomberg.com/news/2010-11-19/ex-societe-generale-trader-agrawal-is-found-guilty-of-stealing-secrets.html

4.59. http://www.bloomberg.com/news/2010-11-19/fdic-seeks-lawyer-documents-as-federal-suits-loom-against-failed-banks.html

4.60. http://www.bloomberg.com/news/2010-11-19/federated-replaces-market-opportunity-manager-lehman-with-noland.html

4.61. http://www.bloomberg.com/news/2010-11-19/federer-says-regaining-no-1-tennis-ranking-from-nadal-will-be-difficult-.html

4.62. http://www.bloomberg.com/news/2010-11-19/fini-berlusconi-may-reconcile-before-key-vote-menia-says.html

4.63. http://www.bloomberg.com/news/2010-11-19/geithner-warns-republicans-against-politicizing-the-fed.html

4.64. http://www.bloomberg.com/news/2010-11-19/groupon-said-to-weigh-sale-to-google-against-raising-funds-for-coupon-site.html

4.65. http://www.bloomberg.com/news/2010-11-19/hong-kong-said-to-plan-further-steps-to-cool-property-market-stocks-drop.html

4.66. http://www.bloomberg.com/news/2010-11-19/how-brazil-s-rousseff-can-keep-markets-sane-alexandre-marinis.html

4.67. http://www.bloomberg.com/news/2010-11-19/ireland-crisis-might-give-china-break-it-seeks-simon-johnson.html

4.68. http://www.bloomberg.com/news/2010-11-19/lazard-s-rohatyn-shocked-by-lehman-blasts-rampant-greed-.html

4.69. http://www.bloomberg.com/news/2010-11-19/nigerian-central-bank-may-keep-key-rate-at-6-25-in-bid-to-slow-inflation.html

4.70. http://www.bloomberg.com/news/2010-11-19/private-placements-luring-unsophisticated-investors-with-nowhere-to-go-.html

4.71. http://www.bloomberg.com/news/2010-11-19/redskins-owner-devine-sues-gillett-for-117-million-from-liverpool-debt.html

4.72. http://www.bloomberg.com/news/2010-11-19/reid-pelosi-plan-votes-on-extending-bush-era-income-tax-cuts.html

4.73. http://www.bloomberg.com/news/2010-11-19/sandoval-quits-santos-group-following-panamericano-s-1-5-billion-bailout.html

4.74. http://www.bloomberg.com/news/2010-11-19/sanofi-buyout-target-genzyme-to-meet-u-s-deadline-to-change-manufacturing.html

4.75. http://www.bloomberg.com/news/2010-11-19/scarborough-suspended-from-msnbc-for-two-days-over-florida-campaign-gifts.html

4.76. http://www.bloomberg.com/news/2010-11-19/senate-approves-4-6-billion-for-claims-by-black-farmers-american-indians.html

4.77. http://www.bloomberg.com/news/2010-11-19/telesat-may-seek-buyers-in-deal-valuing-satellite-firm-at-up-to-7-billion.html

4.78. http://www.bloomberg.com/news/2010-11-19/terror-cases-work-in-civilian-court-verdict-shows-ann-woolner.html

4.79. http://www.bloomberg.com/news/2010-11-20/-harry-potter-has-61-2-million-first-day-sales-may-set-franchise-record.html

4.80. http://www.bloomberg.com/news/2010-11-20/afghans-to-be-masters-of-their-own-house-in-2014-nato-says.html

4.81. http://www.bloomberg.com/news/2010-11-20/canadian-dollar-falls-for-second-week-after-decline-in-crude-oil-prices.html

4.82. http://www.bloomberg.com/news/2010-11-20/duke-of-westminster-tops-ranking-of-property-investors-in-u-k-.html

4.83. http://www.bloomberg.com/news/2010-11-20/india-to-prosecute-any-phone-license-corruption-singh-pledges.html

4.84. http://www.bloomberg.com/news/2010-11-20/irish-corporate-tax-rate-increase-isn-t-a-condition-for-aid-sarkozy-says.html

4.85. http://www.bloomberg.com/news/2010-11-20/irish-corporate-tax-rate-increase-isn-t-a-condition-for-aid-sarkozy-says.html/

4.86. http://www.bloomberg.com/news/2010-11-20/irish-talks-intensify-as-banks-lose-deposits-cowen-campaigns.html

4.87. http://www.bloomberg.com/news/2010-11-20/mlb-s-houston-astros-for-sale-by-owner-drayton-mclane-after-18-years.html

4.88. http://www.bloomberg.com/news/2010-11-20/obama-says-ratification-of-start-fundamental-to-u-s-security.html

4.89. http://www.bloomberg.com/news/2010-11-20/pat-burns-who-led-new-jersey-devils-to-2003-stanley-cup-title-dies-at-58.html

4.90. http://www.bloomberg.com/news/2010-11-20/russia-agrees-to-cooperate-with-nato-on-missile-defense-rasmussen-says.html

4.91. http://www.bloomberg.com/news/2010-11-20/saudi-arabain-shares-decline-to-two-week-low-on-china-ireland-oil-prices.html

4.92. http://www.bloomberg.com/news/2010-11-20/suu-kyi-warns-against-rose-colored-glasses-in-talks-with-myanmar-junta.html

4.93. http://www.bloomberg.com/news/2010-11-20/treasury-10-year-notes-fall-as-investors-back-federal-reserve-s-inflation.html

4.94. http://www.bloomberg.com/news/bonds/

4.95. http://www.bloomberg.com/news/economy/

4.96. http://www.bloomberg.com/news/environment/

4.97. http://www.bloomberg.com/news/europe/

4.98. http://www.bloomberg.com/news/exclusive/

4.99. http://www.bloomberg.com/news/finance/

4.100. http://www.bloomberg.com/news/france/

4.101. http://www.bloomberg.com/news/germany/

4.102. http://www.bloomberg.com/news/health-care/

4.103. http://www.bloomberg.com/news/industries/

4.104. http://www.bloomberg.com/news/industries/finance/story

4.105. http://www.bloomberg.com/news/law/

4.106. http://www.bloomberg.com/news/markets/

4.107. http://www.bloomberg.com/news/personal-finance/

4.108. http://www.bloomberg.com/news/politics/

4.109. http://www.bloomberg.com/news/print/2010-11-20/irish-corporate-tax-rate-increase-isn-t-a-condition-for-aid-sarkozy-says.html

4.110. http://www.bloomberg.com/news/regions/

4.111. http://www.bloomberg.com/news/science/

4.112. http://www.bloomberg.com/news/stocks-on-the-move/

4.113. http://www.bloomberg.com/news/technology/

4.114. http://www.bloomberg.com/news/uk-ireland/

4.115. http://www.bloomberg.com/news/worldwide/

4.116. http://www.bloomberg.com/notices/privacy.html

4.117. http://www.bloomberg.com/notices/tos.html

4.118. http://www.bloomberg.com/notices/trademarks.html

4.119. http://www.bloomberg.com/opinion/

4.120. http://www.bloomberg.com/personal-finance/

4.121. http://www.bloomberg.com/personal-finance/calculators/

4.122. http://www.bloomberg.com/personalities/

4.123. http://www.bloomberg.com/personalities/betty_liu/

4.124. http://www.bloomberg.com/personalities/deirdre_bolton/

4.125. http://www.bloomberg.com/personalities/erik_schatzker/

4.126. http://www.bloomberg.com/personalities/margaret_brennan/

4.127. http://www.bloomberg.com/podcasts/

4.128. http://www.bloomberg.com/popular/

4.129. http://www.bloomberg.com/professional/

4.130. http://www.bloomberg.com/radio/

4.131. http://www.bloomberg.com/radio/schedule/

4.132. http://www.bloomberg.com/radio/shows/

4.133. http://www.bloomberg.com/sitemap/

4.134. http://www.bloomberg.com/solutions/

4.135. http://www.bloomberg.com/solutions/bloomberg_news/digital/

4.136. http://www.bloomberg.com/solutions/bloomberg_news/television/

4.137. http://www.bloomberg.com/sports/

4.138. http://www.bloomberg.com/tv/

4.139. http://www.bloomberg.com/tv/channel-finder/

4.140. http://www.bloomberg.com/tv/mornings/

4.141. http://www.bloomberg.com/tv/schedule/

4.142. http://www.bloomberg.com/tv/shows/

4.143. http://www.bloomberg.com/video/

4.144. http://www.bloomberg.com/video/64638026/

4.145. http://www.bloomberg.com/video/64654492/

4.146. http://www.bloomberg.com/video/64661934/

4.147. http://www.bloomberg.com/video/64663448/

4.148. http://www.bloomberg.com/video/64664632/

4.149. http://www.bloomberg.com/video/featured

4.150. http://www.bloomberg.com/video/featured/

4.151. http://www.bloomberg.com/video/forex-trading/

4.152. http://www.bloomberg.com/webad

5. Cookie without HttpOnly flag set

5.1. http://www.bloomberg.com/about/

5.2. http://www.bloomberg.com/about/careers/

5.3. http://www.bloomberg.com/about/contact/

5.4. http://www.bloomberg.com/about/pressroom/

5.5. http://www.bloomberg.com/apps/quote

5.6. http://www.bloomberg.com/apps/subscriber/webport

5.7. http://www.bloomberg.com/personalities/

5.8. http://www.bloomberg.com/podcasts/

5.9. http://www.bloomberg.com/professional/

5.10. http://www.bloomberg.com/solutions/

5.11. http://www.bloomberg.com/solutions/bloomberg_news/digital/

5.12. http://www.bloomberg.com/solutions/bloomberg_news/television/

6. Email addresses disclosed

6.1. http://www.bloomberg.com/about/contact/

6.2. http://www.bloomberg.com/about/pressroom/

6.3. http://www.bloomberg.com/help.html

6.4. http://www.bloomberg.com/markets-magazine/

6.5. http://www.bloomberg.com/news/2010-11-07/india-s-deadly-diabetes-scourge-cuts-down-millions-rising-to-middle-class.html

6.6. http://www.bloomberg.com/news/2010-11-09/fidelity-s-bolton-defies-china-bears-with-27-new-fund-return.html

6.7. http://www.bloomberg.com/news/2010-11-11/merrill-banker-indicted-for-illegal-transfers-of-funds-says-he-s-scapegoat.html

6.8. http://www.bloomberg.com/news/2010-11-12/specialty-drugmaker-sinobiopharma-takes-on-big-pharma-in-china.html

6.9. http://www.bloomberg.com/news/2010-11-16/senate-s-durbin-not-very-optimistic-bush-era-tax-cuts-will-be-extended.html

6.10. http://www.bloomberg.com/news/2010-11-17/home-ownership-gets-harder-for-americans-as-lenders-restrict-fha-mortgages.html

6.11. http://www.bloomberg.com/news/2010-11-17/merck-drug-improves-cholesterol-without-safety-risk-of-pfizer-s-product.html

6.12. http://www.bloomberg.com/news/2010-11-17/panasonic-to-boost-hiring-at-overseas-operations-next-year.html

6.13. http://www.bloomberg.com/news/2010-11-18/clinton-to-offer-blueprint-for-more-staff-conflict-prevention.html

6.14. http://www.bloomberg.com/news/2010-11-18/fidelity-s-junk-bond-king-notkin-prefers-cheap-stocks-as-debt-rally-dies.html

6.15. http://www.bloomberg.com/news/2010-11-18/mark-to-make-believe-perfumes-rotten-loans-commentary-by-jonathan-weil.html

6.16. http://www.bloomberg.com/news/2010-11-18/only-apple-haters-can-love-samsung-galaxy-tab-rich-jaroslovsky.html

6.17. http://www.bloomberg.com/news/2010-11-18/pfizer-bristol-myers-halt-trial-of-experimental-blood-thinner-on-bleeding.html

6.18. http://www.bloomberg.com/news/2010-11-18/surging-food-prices-likely-to-outlast-china-caps-chart-of-the-day.html

6.19. http://www.bloomberg.com/news/2010-11-19/-lost-john-osborne-play-returns-angry-young-man-john-simon.html

6.20. http://www.bloomberg.com/news/2010-11-19/amgen-s-bone-drug-denosumab-cleared-to-treat-fractures-in-cancer-patients.html

6.21. http://www.bloomberg.com/news/2010-11-19/apple-may-introduce-thinner-ipad-tablet-early-next-year-analysts-predict.html

6.22. http://www.bloomberg.com/news/2010-11-19/bankrupt-owner-of-lipstick-building-can-use-cash-update1-.html

6.23. http://www.bloomberg.com/news/2010-11-19/bernanke-takes-defense-of-monetary-stimulus-abroad-turns-tables-on-china.html

6.24. http://www.bloomberg.com/news/2010-11-19/boston-scientific-to-buy-full-control-of-sadra-medical-update3-.html

6.25. http://www.bloomberg.com/news/2010-11-19/california-texas-florida-new-york-report-jobs-gains-as-economy-recovers.html

6.26. http://www.bloomberg.com/news/2010-11-19/camilla-could-become-queen-prince-charles-tells-nbc-network-in-interview.html

6.27. http://www.bloomberg.com/news/2010-11-19/cleopatra-outfoxed-her-brother-husband-by-seducing-caesar-lewis-lapham.html

6.28. http://www.bloomberg.com/news/2010-11-19/cox-communications-takes-on-at-t-verizon-with-mobile-offering.html

6.29. http://www.bloomberg.com/news/2010-11-19/crude-heads-for-weekly-loss-after-china-orders-banks-to-increase-reserves.html

6.30. http://www.bloomberg.com/news/2010-11-19/ex-societe-generale-trader-agrawal-is-found-guilty-of-stealing-secrets.html

6.31. http://www.bloomberg.com/news/2010-11-19/fdic-seeks-lawyer-documents-as-federal-suits-loom-against-failed-banks.html

6.32. http://www.bloomberg.com/news/2010-11-19/federated-replaces-market-opportunity-manager-lehman-with-noland.html

6.33. http://www.bloomberg.com/news/2010-11-19/federer-says-regaining-no-1-tennis-ranking-from-nadal-will-be-difficult-.html

6.34. http://www.bloomberg.com/news/2010-11-19/fini-berlusconi-may-reconcile-before-key-vote-menia-says.html

6.35. http://www.bloomberg.com/news/2010-11-19/geithner-warns-republicans-against-politicizing-the-fed.html

6.36. http://www.bloomberg.com/news/2010-11-19/groupon-said-to-weigh-sale-to-google-against-raising-funds-for-coupon-site.html

6.37. http://www.bloomberg.com/news/2010-11-19/hong-kong-said-to-plan-further-steps-to-cool-property-market-stocks-drop.html

6.38. http://www.bloomberg.com/news/2010-11-19/how-brazil-s-rousseff-can-keep-markets-sane-alexandre-marinis.html

6.39. http://www.bloomberg.com/news/2010-11-19/ireland-crisis-might-give-china-break-it-seeks-simon-johnson.html

6.40. http://www.bloomberg.com/news/2010-11-19/lazard-s-rohatyn-shocked-by-lehman-blasts-rampant-greed-.html

6.41. http://www.bloomberg.com/news/2010-11-19/nigerian-central-bank-may-keep-key-rate-at-6-25-in-bid-to-slow-inflation.html

6.42. http://www.bloomberg.com/news/2010-11-19/private-placements-luring-unsophisticated-investors-with-nowhere-to-go-.html

6.43. http://www.bloomberg.com/news/2010-11-19/redskins-owner-devine-sues-gillett-for-117-million-from-liverpool-debt.html

6.44. http://www.bloomberg.com/news/2010-11-19/reid-pelosi-plan-votes-on-extending-bush-era-income-tax-cuts.html

6.45. http://www.bloomberg.com/news/2010-11-19/sandoval-quits-santos-group-following-panamericano-s-1-5-billion-bailout.html

6.46. http://www.bloomberg.com/news/2010-11-19/sanofi-buyout-target-genzyme-to-meet-u-s-deadline-to-change-manufacturing.html

6.47. http://www.bloomberg.com/news/2010-11-19/scarborough-suspended-from-msnbc-for-two-days-over-florida-campaign-gifts.html

6.48. http://www.bloomberg.com/news/2010-11-19/senate-approves-4-6-billion-for-claims-by-black-farmers-american-indians.html

6.49. http://www.bloomberg.com/news/2010-11-19/telesat-may-seek-buyers-in-deal-valuing-satellite-firm-at-up-to-7-billion.html

6.50. http://www.bloomberg.com/news/2010-11-19/terror-cases-work-in-civilian-court-verdict-shows-ann-woolner.html

6.51. http://www.bloomberg.com/news/2010-11-20/-harry-potter-has-61-2-million-first-day-sales-may-set-franchise-record.html

6.52. http://www.bloomberg.com/news/2010-11-20/afghans-to-be-masters-of-their-own-house-in-2014-nato-says.html

6.53. http://www.bloomberg.com/news/2010-11-20/canadian-dollar-falls-for-second-week-after-decline-in-crude-oil-prices.html

6.54. http://www.bloomberg.com/news/2010-11-20/duke-of-westminster-tops-ranking-of-property-investors-in-u-k-.html

6.55. http://www.bloomberg.com/news/2010-11-20/india-to-prosecute-any-phone-license-corruption-singh-pledges.html

6.56. http://www.bloomberg.com/news/2010-11-20/irish-corporate-tax-rate-increase-isn-t-a-condition-for-aid-sarkozy-says.html

6.57. http://www.bloomberg.com/news/2010-11-20/irish-corporate-tax-rate-increase-isn-t-a-condition-for-aid-sarkozy-says.html/

6.58. http://www.bloomberg.com/news/2010-11-20/irish-talks-intensify-as-banks-lose-deposits-cowen-campaigns.html

6.59. http://www.bloomberg.com/news/2010-11-20/mlb-s-houston-astros-for-sale-by-owner-drayton-mclane-after-18-years.html

6.60. http://www.bloomberg.com/news/2010-11-20/obama-says-ratification-of-start-fundamental-to-u-s-security.html

6.61. http://www.bloomberg.com/news/2010-11-20/pat-burns-who-led-new-jersey-devils-to-2003-stanley-cup-title-dies-at-58.html

6.62. http://www.bloomberg.com/news/2010-11-20/russia-agrees-to-cooperate-with-nato-on-missile-defense-rasmussen-says.html

6.63. http://www.bloomberg.com/news/2010-11-20/saudi-arabain-shares-decline-to-two-week-low-on-china-ireland-oil-prices.html

6.64. http://www.bloomberg.com/news/2010-11-20/suu-kyi-warns-against-rose-colored-glasses-in-talks-with-myanmar-junta.html

6.65. http://www.bloomberg.com/news/2010-11-20/treasury-10-year-notes-fall-as-investors-back-federal-reserve-s-inflation.html

6.66. http://www.bloomberg.com/news/print/2010-11-20/irish-corporate-tax-rate-increase-isn-t-a-condition-for-aid-sarkozy-says.html

6.67. http://www.bloomberg.com/news/stocks-on-the-move/

6.68. http://www.bloomberg.com/notices/privacy.html

6.69. http://www.bloomberg.com/notices/tos.html



1. Cross-site scripting (reflected)  next

Summary

Severity:   High
Confidence:   Certain
Host:   http://www.bloomberg.com
Path:   /apps/data

Issue detail

The value of the sgid request parameter is copied into the HTML document as plain text between tags. The payload a25d9<script>alert(1)</script>5317604af18 was submitted in the sgid parameter. This input was echoed unmodified in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Issue background

Reflected cross-site scripting vulnerabilities arise when data is copied from a request and echoed into the application's immediate response in an unsafe way. An attacker can use the vulnerability to construct a request which, if issued by another application user, will cause JavaScript code supplied by the attacker to execute within the user's browser in the context of that user's session with the application.

The attacker-supplied code can perform a wide variety of actions, such as stealing the victim's session token or login credentials, performing arbitrary actions on the victim's behalf, and logging their keystrokes.

Users can be induced to issue the attacker's crafted request in various ways. For example, the attacker can send a victim a link containing a malicious URL in an email or instant message. They can submit the link to popular web sites that allow content authoring, for example in blog comments. And they can create an innocuous looking web site which causes anyone viewing it to make arbitrary cross-domain requests to the vulnerable application (using either the GET or the POST method).

The security impact of cross-site scripting vulnerabilities is dependent upon the nature of the vulnerable application, the kinds of data and functionality which it contains, and the other applications which belong to the same domain and organisation. If the application is used only to display non-sensitive public content, with no authentication or access control functionality, then a cross-site scripting flaw may be considered low risk. However, if the same application resides on a domain which can access cookies for other more security-critical applications, then the vulnerability could be used to attack those other applications, and so may be considered high risk. Similarly, if the organisation which owns the application is a likely target for phishing attacks, then the vulnerability could be leveraged to lend credibility to such attacks, by injecting Trojan functionality into the vulnerable application, and exploiting users' trust in the organisation in order to capture credentials for other applications which it owns. In many kinds of application, such as those providing online banking functionality, cross-site scripting should always be considered high risk.

Issue remediation

In most situations where user-controllable data is copied into application responses, cross-site scripting attacks can be prevented using two layers of defenses:In cases where the application's functionality allows users to author content using a restricted subset of HTML tags and attributes (for example, blog comments which allow limited formatting and linking), it is necessary to parse the supplied HTML to validate that it does not use any dangerous syntax; this is a non-trivial task.

Request

GET /apps/data?pid=trackstoryhits&sgid=LC6SCH1A74E901a25d9<script>alert(1)</script>5317604af18 HTTP/1.1
Host: www.bloomberg.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmv=30057196.|3=opt=no-opt=1,; s_sess=%20s_ria%3Dflash%257CSilverlight%25204.0%3B%20s_campaign%3Dcof_2%3B%20s_cc%3Dtrue%3B%20ev1%3Dtv%253Ahome%3B%20s_sq%3D%3B; __utmz=30057196.1290273703.1.1.utmcsr=s0.2mdn.net|utmccn=(referral)|utmcmd=referral|utmcct=/1797755/Coffee_v1_300x250.swf; path_cookie=_news; BT=; oo_int_hit=1; oo_int_percent=0; rsi_segs=; s_vi=[CS]v1|267401DC851D2580-4000012F803267BB[CE]; OAX=rnneEkzoA7IACz4K; __utma=30057196.685584106.1290273703.1290273703.1290273703.1; __utmc=30057196; RMFD=011PJr8MO1021wJe; __utmb=30057196.3.9.1290273791381; opt=no-opt;

Response

HTTP/1.1 200 OK
Server: Sun-Java-System-Web-Server/7.0
Cache-Control: max-age=900
Content-Type: text/plain
Content-Length: 71
Date: Sat, 20 Nov 2010 18:22:28 GMT
Connection: close


Error sgid=LC6SCH1A74E901a25d9<script>alert(1)</script>5317604af18


2. Cookie scoped to parent domain  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.bloomberg.com
Path:   /apps/subscriber/webport

Issue detail

The following cookie was issued by the application and is scoped to a parent of the issuing domain:The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Issue background

A cookie's domain attribute determines which domains can access the cookie. Browsers will automatically submit the cookie in requests to in-scope domains, and those domains will also be able to access the cookie via JavaScript. If a cookie is scoped to a parent domain, then that cookie will be accessible by the parent domain and also by any other subdomains of the parent domain. If the cookie contains sensitive data (such as a session token) then this data may be accessible by less trusted or less secure applications residing at those domains, leading to a security compromise.

Issue remediation

By default, cookies are scoped to the issuing domain and all subdomains. If you remove the explicit domain attribute from your Set-cookie directive, then the cookie will have this default scope, which is safe and appropriate in most situations. If you particularly need a cookie to be accessible by a parent domain, then you should thoroughly review the security of the applications residing on that domain and its subdomains, and confirm that you are willing to trust the people and systems which support those applications.

Request

GET /apps/subscriber/webport HTTP/1.1
Host: www.bloomberg.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmv=30057196.|3=opt=no-opt=1,; s_sess=%20s_ria%3Dflash%257CSilverlight%25204.0%3B%20s_campaign%3Dcof_2%3B%20s_cc%3Dtrue%3B%20ev1%3Dtv%253Ahome%3B%20s_sq%3D%3B; __utmz=30057196.1290273703.1.1.utmcsr=s0.2mdn.net|utmccn=(referral)|utmcmd=referral|utmcct=/1797755/Coffee_v1_300x250.swf; path_cookie=_news; BT=; oo_int_hit=1; oo_int_percent=0; rsi_segs=; s_vi=[CS]v1|267401DC851D2580-4000012F803267BB[CE]; OAX=rnneEkzoA7IACz4K; __utma=30057196.685584106.1290273703.1290273703.1290273703.1; __utmc=30057196; RMFD=011PJr8MO1021wJe; __utmb=30057196.3.9.1290273791381; opt=no-opt;

Response

HTTP/1.1 302 Moved Temporarily
Server: Sun-Java-System-Web-Server/7.0
Vary: Accept-Encoding
Cache-Control: private,max-age=0
Content-Type: text/html
Location: https://software.bloomberg.com/log-in/index.html
Date: Sat, 20 Nov 2010 18:22:03 GMT
Connection: close
Set-Cookie: BTOG=http://www.bloomberg.com/apps/subscriber/webport|; path=/; domain=.bloomberg.com; expires=Sat Nov 20 19:27:03 2010 GMT
Content-Length: 0


3. Cross-domain Referer leakage  previous  next
There are 4 instances of this issue:

Issue background

When a web browser makes a request for a resource, it typically adds an HTTP header, called the "Referer" header, indicating the URL of the resource from which the request originated. This occurs in numerous situations, for example when a web page loads an image or script, or when a user clicks on a link or submits a form.

If the resource being requested resides on a different domain, then the Referer header is still generally included in the cross-domain request. If the originating URL contains any sensitive information within its query string, such as a session token, then this information will be transmitted to the other domain. If the other domain is not fully trusted by the application, then this may lead to a security compromise.

You should review the contents of the information being transmitted to other domains, and also determine whether those domains are fully trusted by the originating application.

Today's browsers may withhold the Referer header in some situations (for example, when loading a non-HTTPS resource from a page that was loaded over HTTPS, or when a Refresh directive is issued), but this behaviour should not be relied upon to protect the originating URL from disclosure.

Note also that if users can author content within the application then an attacker may be able to inject links referring to a domain they control in order to capture data from URLs used within the application.

Issue remediation

The application should never transmit any sensitive information within the URL query string. In addition to being leaked in the Referer header, such information may be logged in various locations and may be visible on-screen to untrusted parties.


3.1. http://www.bloomberg.com/  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.bloomberg.com
Path:   /

Issue detail

The page was loaded from a URL containing a query string:The response contains the following links to other domains:

Request

GET /?cmpid=cof_2 HTTP/1.1
Host: www.bloomberg.com
Proxy-Connection: keep-alive
Referer: http://s0.2mdn.net/1797755/Coffee_v1_300x250.swf
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.7 (KHTML, like Gecko) Chrome/7.0.517.44 Safari/534.7
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3

Response

HTTP/1.1 200 OK
Server: Sun-Java-System-Web-Server/7.0
Vary: Accept-Encoding
ETag: W/"696f35ab04d72280565e7e26fa51452f"
X-runtime: 11
Content-Type: text/html; charset=utf-8
Proxy-agent: Sun-Java-System-Web-Server/7.0
Cache-Control: private, max-age=51
Date: Sat, 20 Nov 2010 18:02:27 GMT
Connection: close
Content-Length: 77803

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN"
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xmlns:og="http://opengraphprotocol.org/sc
...[SNIP]...
</script>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/main-min.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/ab-min.js" type="text/javascript"></script> <link href="http://cdn.gotraffic.net/v/20101118_153606/stylesheets/main-min.css" media="all" rel="stylesheet" type="text/css" /> <script type="text/javascript">
...[SNIP]...
hibited.* This product and other products of OpinionLab, Inc. are protected by U.S. Patent No. US 6606581, 6421724, 6785717 B1 and other patents pending.* http://www.opinionlab.com-->
<link href="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionV5i/oo_style.css" media="screen" rel="stylesheet" type="text/css" /> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionV5i/oo_engine.min.js" type="text/javascript"></script> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionV5i/oo_conf_int.js" type="text/javascript"></script>
...[SNIP]...
<body class="home">
<script src="http://www.googletagservices.com/tag/static/google_services.js" type="text/javascript"></script>
...[SNIP]...
<li><a href="http://www.businessweek.com/">Businessweek.com</a>
...[SNIP]...
<li><a href="http://www.bloombergsports.com/">Bloomberg Sports</a>
...[SNIP]...
<div id="facebook_twitter_small_icons">
<a rel="external" href="http://twitter.com/bloombergnow" id="topnews_twitter" title="on Twitter">
</a>
<a rel="external" href="http://www.facebook.com/BloombergNow" id="topnews_facebook" title="on Facebook">
</a>
...[SNIP]...
<h2><a href="http://www.businessweek.com" class="chevron">Businessweek.com</a>
...[SNIP]...
<div class="teaser_item">
<a href="http://www.businessweek.com/managing/content/nov2010/ca20101119_084299.htm" class="teaser_link">As the Walkman Retires, Sony Rewires</a>
...[SNIP]...
<div class="teaser_item">
<a href="http://www.businessweek.com/bschools/blogs/mba_admissions/archives/2010/11/apple_ipad_enters_the_mba_classroom.html" class="teaser_link">Apple iPad Enters the MBA Classroom</a>
...[SNIP]...
<div class="teaser_item">
<a href="http://www.businessweek.com/managing/content/nov2010/ca20101119_750093.htm" class="teaser_link">The Kids Are All Right</a>
...[SNIP]...
<div class="cover">
<a href="http://www.businessweek.com/magazine/">
<img height="100" width="75" src="http://images.businessweek.com/mz/covers/current_120x160.jpg" class="photo" alt="Businessweek Magazine Cover">
</a>
...[SNIP]...
<p><a class="story_link" href="http://www.businessweek.com/magazine/"><span class="magazine_title">
...[SNIP]...
<p><a class="btn w75" href="https://w1.buysub.com/servlet/OrdersGateway?cds_page_id=76549&cds_mag_code=BWK&cds_response_key=I1005HI01">Subscribe</a>
...[SNIP]...
</script>
<script type="text/javascript" src="http://pagead2.googlesyndication.com/pagead/show_ads.js">
</script>
...[SNIP]...
<a href="javascript:void(0);" onClick="oOobj2.OnClick()"><img src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/sm_FAB000_oo.gif" border="0" title="Rate this Page" style="margin-right:5px;" />Rate this Page</a>
...[SNIP]...
<li><a href="http://affiliates.iamplify.com/scripts/t.php?aid=fc5acad9&bid=b6b4b7f0" rel="nofollow">Keene On Demand</a>
...[SNIP]...
<li><a rel="external" id="footer_businessweek" href="http://www.businessweek.com/">Bloomberg Businessweek</a>
...[SNIP]...
<li><a rel="external" id="footer_businessexchange" href="http://bx.businessweek.com/">Business Exchange</a>
...[SNIP]...
<li><a rel="external" id="footer_twitter" href="http://twitter.com/bloombergnow">Bloomberg on Twitter</a>
...[SNIP]...
<li><a rel="external" id="footer_facebook" href="http://www.facebook.com/BloombergNow">Bloomberg on Facebook</a>
...[SNIP]...
<li><a rel="external" id="footer_bgov" href="http://www.bgov.com/">Bloomberg Government</a>
...[SNIP]...
<li><a rel="external" id="footer_blaw" href="http://www.bloomberglaw.com">Bloomberg Law</a>
...[SNIP]...
<li><a rel="external" id="footer_bblink" href="http://www.bloomberglink.com/">Bloomberg Link</a>
...[SNIP]...
<li><a rel="external" id="footer_new_energy_finance" href="http://www.newenergyfinance.com/">Bloomberg New Energy Finance</a>
...[SNIP]...
<li><a rel="external" id="footer_bpress" href="http://www.wiley.com/remsection.cgi?discount=BLOOM&navid=404407">Bloomberg Press</a>
...[SNIP]...
<li><a rel="external" id="footer_bsports" href="http://www.bloombergsports.com/">Bloomberg Sports</a>
...[SNIP]...
<li><a rel="external" id="footer_butv" href="http://www.bloombergutv.com/">Bloomberg UTV</a>
...[SNIP]...
<noscript>
<img alt="" height="0" width="0" style="display:none" src="http://b.scorecardresearch.com/b?c1=2&c2=3005059&c3=&c4=&c5=&c6=&c15=&cv=1.3&cj=1">
</noscript>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/s_code_p.js" type="text/javascript"></script> <link href="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_style.css" media="screen" rel="stylesheet" type="text/css" /> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_engine_c.js" type="text/javascript"></script> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_conf_en-US_inline.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script type="text/javascript" src="http://js.revsci.net/gateway/gw.js?csid=K05539"></script>
...[SNIP]...
<noscript>
<iframe src="http://view.atdmt.com/iaction/msrbbg_BloombergHomepage_1" width="1" height="1" frameborder="0" scrolling="No" marginheight="0" marginwidth="0" topmargin="0" leftmargin="0"></iframe>
...[SNIP]...

3.2. http://www.bloomberg.com/apps/news  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.bloomberg.com
Path:   /apps/news

Issue detail

The page was loaded from a URL containing a query string:The response contains the following links to other domains:

Request

GET /apps/news?pid=newsarchive&sid= HTTP/1.1
Host: www.bloomberg.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmv=30057196.|3=opt=no-opt=1,; s_sess=%20s_ria%3Dflash%257CSilverlight%25204.0%3B%20s_campaign%3Dcof_2%3B%20s_cc%3Dtrue%3B%20ev1%3Dtv%253Ahome%3B%20s_sq%3D%3B; __utmz=30057196.1290273703.1.1.utmcsr=s0.2mdn.net|utmccn=(referral)|utmcmd=referral|utmcct=/1797755/Coffee_v1_300x250.swf; path_cookie=_news; BT=; oo_int_hit=1; oo_int_percent=0; rsi_segs=; s_vi=[CS]v1|267401DC851D2580-4000012F803267BB[CE]; OAX=rnneEkzoA7IACz4K; __utma=30057196.685584106.1290273703.1290273703.1290273703.1; __utmc=30057196; RMFD=011PJr8MO1021wJe; __utmb=30057196.3.9.1290273791381; opt=no-opt;

Response

HTTP/1.1 200 OK
Server: Sun-Java-System-Web-Server/7.0
Content-Type: text/html;charset=UTF-8
Cache-Control: max-age=60
Date: Sat, 20 Nov 2010 18:22:06 GMT
Content-Length: 29844
Connection: close

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml"
xmlns:fb="http://www.facebook.com/2008/
...[SNIP]...
</script>
<script type="text/javascript" src="http://cdn.gotraffic.net/v/20101116_172122/javascripts/main-min.js">//</script>
...[SNIP]...
</script>
<script type="text/javascript" src="http://cdn.gotraffic.net/v/20101116_172122/javascripts/ab-min.js">//</script>

<link href="http://cdn.gotraffic.net/v/20101116_172122/stylesheets/main-min.css" rel="stylesheet" rev="stylesheet" type="text/css" media="screen" />

<!--[if IE 6]>
...[SNIP]...
<body xmlns:webvar="http://www.bloomberg.com/webvar" class="news">
<script type="text/javascript" src="http://www.googletagservices.com/tag/static/google_services.js">//</script>
...[SNIP]...
<li>
<a href="http://www.businessweek.com/">Businessweek.com</a>
...[SNIP]...
<li>
<a href="http://www.bloombergsports.com/">Bloomberg Sports</a>
...[SNIP]...
<li class="twitter">
<a rel="nofollow" data-via="BloombergNow" data-count="horizontal" url="http://www.bloomberg.com/apps/news?pid%3Dnewsarchive%26sid%3D" class="twitter-share-button" href="http://twitter.com/share">Tweet</a>
</li>
<li class="linkedin linkedin_old">
<a rel="nofollow" onmousedown="BLOOMBERG.tracker.EVENTTRACK.record('Social Media', 'Linkedin Share Article', 'http://www.bloomberg.com/apps/news?pid%3Dnewsarchive%26sid%3D');" onclick="window.open(this.href,'linkedinpopup','height=500,width=800,scrollbars=1');return false;" href="http://www.linkedin.com/shareArticle?mini=true&amp;url=http://www.bloomberg.com/apps/news?pid%3Dnewsarchive%26sid%3D&amp;title=&amp;summary=&amp;source=Bloomberg.com">LinkedIn</a>
...[SNIP]...
<li class="bx">
<a rel="nofollow" onmousedown="BLOOMBERG.tracker.EVENTTRACK.record('Social Media', 'Add Article to Business Exchange', 'http://www.bloomberg.com/apps/news?pid%3Dnewsarchive%26sid%3D');" onclick="window.open(this.href,'bxpopup','height=500,width=800,scrollbars=1');return false;" href="http://bx.businessweek.com/api/add-article-to-bx.tn?url=http://www.bloomberg.com/apps/news?pid%3Dnewsarchive%26sid%3D">Business Exchange</a>
...[SNIP]...
<li class="yahoo">
<a rel="nofollow" onmousedown="BLOOMBERG.tracker.EVENTTRACK.record('Social Media', 'Buzz Article in Yahoo', 'http://www.bloomberg.com/apps/news?pid%3Dnewsarchive%26sid%3D');" onclick="window.open(this.href,'yahoopopup','height=500,width=800,scrollbars=1');return false;" href="http://buzz.yahoo.com/buzz?targetUrl=http://www.bloomberg.com/apps/news?pid%3Dnewsarchive%26sid%3D&amp;headline=&amp;summary=&amp;tags=news">Buzz up!</a>
</li>
<li class="digg last">
<a rel="nofollow" onmousedown="BLOOMBERG.tracker.EVENTTRACK.record('Social Media', 'Digg Article', 'http://www.bloomberg.com/apps/news?pid%3Dnewsarchive%26sid%3D');" onclick="window.open(this.href,'digg','height=500,width=800,scrollbars=1');return false;" href="http://digg.com/submit?url=http://www.bloomberg.com/apps/news?pid%3Dnewsarchive%26sid%3D&amp;title=&amp;bodytext=&amp;topic=business_finance">Digg</a>
...[SNIP]...
</div>
<script src="http://platform.twitter.com/widgets.js" type="text/javascript">//</script>
...[SNIP]...
</script>
<script type="text/javascript" src="http://pagead2.googlesyndication.com/pagead/show_ads.js">//</script>
...[SNIP]...
<li>
<a href="http://affiliates.iamplify.com/scripts/t.php?aid=fc5acad9&amp;bid=b6b4b7f0">Keene On Demand</a>
...[SNIP]...
<li>
<a href="http://www.businessweek.com/" id="footer_businessweek" rel="external">Bloomberg Businessweek</a>
...[SNIP]...
<li>
<a href="http://bx.businessweek.com/" id="footer_businessexchange" rel="external">Business Exchange</a>
...[SNIP]...
<li>
<a href="http://twitter.com/bloombergnow" id="footer_twitter" rel="external">BloombergNow on Twitter</a>
...[SNIP]...
<li>
<a href="http://www.facebook.com/BloombergNow" id="footer_facebook" rel="external">BloombergNow on Facebook</a>
...[SNIP]...
<li>
<a href="http://www.bgov.com/" id="footer_bgov" rel="external">Bloomberg Government</a>
...[SNIP]...
<li>
<a href="http://www.bloomberglaw.com" id="footer_blaw" rel="external">Bloomberg Law</a>
...[SNIP]...
<li>
<a href="http://www.bloomberglink.com/" id="footer_blaw" rel="external">Bloomberg Link</a>
...[SNIP]...
<li>
<a href="http://www.newenergyfinance.com/" id="footer_new_energy_finance" rel="external">Bloomberg New Energy Finance</a>
...[SNIP]...
<li>
<a href="http://www.wiley.com/remsection.cgi?discount=BLOOM&amp;navid=404407" id="footer_bpress" rel="external">Bloomberg Press</a>
...[SNIP]...
<li>
<a href="http://www.bloombergsports.com/" id="footer_bsports" rel="external">Bloomberg Sports</a>
...[SNIP]...
<li>
<a href="http://www.bloombergutv.com/" id="footer_butv" rel="external">Bloomberg UTV</a>
...[SNIP]...
<noscript>
<img alt="" height="0" width="0" style="display:none" src="http://b.scorecardresearch.com/b?c1=2&amp;c2=3005059&amp;c3=&amp;c4=&amp;c5=&amp;c6=&amp;c15=&amp;cv=1.3&amp;cj=1"/>
</noscript>
...[SNIP]...
</script>
<script type="text/javascript" src="http://js.revsci.net/gateway/gw.js?csid=K05539">// </script>
...[SNIP]...

3.3. http://www.bloomberg.com/apps/news  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.bloomberg.com
Path:   /apps/news

Issue detail

The page was loaded from a URL containing a query string:The response contains the following links to other domains:

Request

GET /apps/news?pid=newsarchive& HTTP/1.1
Host: www.bloomberg.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmv=30057196.|3=opt=no-opt=1,; s_sess=%20s_ria%3Dflash%257CSilverlight%25204.0%3B%20s_campaign%3Dcof_2%3B%20s_cc%3Dtrue%3B%20ev1%3Dtv%253Ahome%3B%20s_sq%3D%3B; __utmz=30057196.1290273703.1.1.utmcsr=s0.2mdn.net|utmccn=(referral)|utmcmd=referral|utmcct=/1797755/Coffee_v1_300x250.swf; path_cookie=_news; BT=; oo_int_hit=1; oo_int_percent=0; rsi_segs=; s_vi=[CS]v1|267401DC851D2580-4000012F803267BB[CE]; OAX=rnneEkzoA7IACz4K; __utma=30057196.685584106.1290273703.1290273703.1290273703.1; __utmc=30057196; RMFD=011PJr8MO1021wJe; __utmb=30057196.3.9.1290273791381; opt=no-opt;

Response

HTTP/1.1 200 OK
Server: Sun-Java-System-Web-Server/7.0
Content-Type: text/html;charset=UTF-8
Cache-Control: max-age=57
Date: Sat, 20 Nov 2010 18:22:05 GMT
Content-Length: 29764
Connection: close

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml"
xmlns:fb="http://www.facebook.com/2008/
...[SNIP]...
</script>
<script type="text/javascript" src="http://cdn.gotraffic.net/v/20101116_172122/javascripts/main-min.js">//</script>
...[SNIP]...
</script>
<script type="text/javascript" src="http://cdn.gotraffic.net/v/20101116_172122/javascripts/ab-min.js">//</script>

<link href="http://cdn.gotraffic.net/v/20101116_172122/stylesheets/main-min.css" rel="stylesheet" rev="stylesheet" type="text/css" media="screen" />

<!--[if IE 6]>
...[SNIP]...
<body xmlns:webvar="http://www.bloomberg.com/webvar" class="news">
<script type="text/javascript" src="http://www.googletagservices.com/tag/static/google_services.js">//</script>
...[SNIP]...
<li>
<a href="http://www.businessweek.com/">Businessweek.com</a>
...[SNIP]...
<li>
<a href="http://www.bloombergsports.com/">Bloomberg Sports</a>
...[SNIP]...
<li class="twitter">
<a rel="nofollow" data-via="BloombergNow" data-count="horizontal" url="http://www.bloomberg.com/apps/news?pid%3Dnewsarchive%26" class="twitter-share-button" href="http://twitter.com/share">Tweet</a>
</li>
<li class="linkedin linkedin_old">
<a rel="nofollow" onmousedown="BLOOMBERG.tracker.EVENTTRACK.record('Social Media', 'Linkedin Share Article', 'http://www.bloomberg.com/apps/news?pid%3Dnewsarchive%26');" onclick="window.open(this.href,'linkedinpopup','height=500,width=800,scrollbars=1');return false;" href="http://www.linkedin.com/shareArticle?mini=true&amp;url=http://www.bloomberg.com/apps/news?pid%3Dnewsarchive%26&amp;title=&amp;summary=&amp;source=Bloomberg.com">LinkedIn</a>
...[SNIP]...
<li class="bx">
<a rel="nofollow" onmousedown="BLOOMBERG.tracker.EVENTTRACK.record('Social Media', 'Add Article to Business Exchange', 'http://www.bloomberg.com/apps/news?pid%3Dnewsarchive%26');" onclick="window.open(this.href,'bxpopup','height=500,width=800,scrollbars=1');return false;" href="http://bx.businessweek.com/api/add-article-to-bx.tn?url=http://www.bloomberg.com/apps/news?pid%3Dnewsarchive%26">Business Exchange</a>
...[SNIP]...
<li class="yahoo">
<a rel="nofollow" onmousedown="BLOOMBERG.tracker.EVENTTRACK.record('Social Media', 'Buzz Article in Yahoo', 'http://www.bloomberg.com/apps/news?pid%3Dnewsarchive%26');" onclick="window.open(this.href,'yahoopopup','height=500,width=800,scrollbars=1');return false;" href="http://buzz.yahoo.com/buzz?targetUrl=http://www.bloomberg.com/apps/news?pid%3Dnewsarchive%26&amp;headline=&amp;summary=&amp;tags=news">Buzz up!</a>
</li>
<li class="digg last">
<a rel="nofollow" onmousedown="BLOOMBERG.tracker.EVENTTRACK.record('Social Media', 'Digg Article', 'http://www.bloomberg.com/apps/news?pid%3Dnewsarchive%26');" onclick="window.open(this.href,'digg','height=500,width=800,scrollbars=1');return false;" href="http://digg.com/submit?url=http://www.bloomberg.com/apps/news?pid%3Dnewsarchive%26&amp;title=&amp;bodytext=&amp;topic=business_finance">Digg</a>
...[SNIP]...
</div>
<script src="http://platform.twitter.com/widgets.js" type="text/javascript">//</script>
...[SNIP]...
</script>
<script type="text/javascript" src="http://pagead2.googlesyndication.com/pagead/show_ads.js">//</script>
...[SNIP]...
<li>
<a href="http://affiliates.iamplify.com/scripts/t.php?aid=fc5acad9&amp;bid=b6b4b7f0">Keene On Demand</a>
...[SNIP]...
<li>
<a href="http://www.businessweek.com/" id="footer_businessweek" rel="external">Bloomberg Businessweek</a>
...[SNIP]...
<li>
<a href="http://bx.businessweek.com/" id="footer_businessexchange" rel="external">Business Exchange</a>
...[SNIP]...
<li>
<a href="http://twitter.com/bloombergnow" id="footer_twitter" rel="external">BloombergNow on Twitter</a>
...[SNIP]...
<li>
<a href="http://www.facebook.com/BloombergNow" id="footer_facebook" rel="external">BloombergNow on Facebook</a>
...[SNIP]...
<li>
<a href="http://www.bgov.com/" id="footer_bgov" rel="external">Bloomberg Government</a>
...[SNIP]...
<li>
<a href="http://www.bloomberglaw.com" id="footer_blaw" rel="external">Bloomberg Law</a>
...[SNIP]...
<li>
<a href="http://www.bloomberglink.com/" id="footer_blaw" rel="external">Bloomberg Link</a>
...[SNIP]...
<li>
<a href="http://www.newenergyfinance.com/" id="footer_new_energy_finance" rel="external">Bloomberg New Energy Finance</a>
...[SNIP]...
<li>
<a href="http://www.wiley.com/remsection.cgi?discount=BLOOM&amp;navid=404407" id="footer_bpress" rel="external">Bloomberg Press</a>
...[SNIP]...
<li>
<a href="http://www.bloombergsports.com/" id="footer_bsports" rel="external">Bloomberg Sports</a>
...[SNIP]...
<li>
<a href="http://www.bloombergutv.com/" id="footer_butv" rel="external">Bloomberg UTV</a>
...[SNIP]...
<noscript>
<img alt="" height="0" width="0" style="display:none" src="http://b.scorecardresearch.com/b?c1=2&amp;c2=3005059&amp;c3=&amp;c4=&amp;c5=&amp;c6=&amp;c15=&amp;cv=1.3&amp;cj=1"/>
</noscript>
...[SNIP]...
</script>
<script type="text/javascript" src="http://js.revsci.net/gateway/gw.js?csid=K05539">// </script>
...[SNIP]...

3.4. http://www.bloomberg.com/apps/quote  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.bloomberg.com
Path:   /apps/quote

Issue detail

The page was loaded from a URL containing a query string:The response contains the following links to other domains:

Request

GET /apps/quote?ticker=INDU:IND HTTP/1.1
Host: www.bloomberg.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmv=30057196.|3=opt=no-opt=1,; s_sess=%20s_ria%3Dflash%257CSilverlight%25204.0%3B%20s_campaign%3Dcof_2%3B%20s_cc%3Dtrue%3B%20ev1%3Dtv%253Ahome%3B%20s_sq%3D%3B; __utmz=30057196.1290273703.1.1.utmcsr=s0.2mdn.net|utmccn=(referral)|utmcmd=referral|utmcct=/1797755/Coffee_v1_300x250.swf; path_cookie=_news; BT=; oo_int_hit=1; oo_int_percent=0; rsi_segs=; s_vi=[CS]v1|267401DC851D2580-4000012F803267BB[CE]; OAX=rnneEkzoA7IACz4K; __utma=30057196.685584106.1290273703.1290273703.1290273703.1; __utmc=30057196; RMFD=011PJr8MO1021wJe; __utmb=30057196.3.9.1290273791381; opt=no-opt;

Response

HTTP/1.1 200 OK
Server: Sun-Java-System-Web-Server/7.0
Cache-Control: private,max-age=0
Content-Type: text/html
Date: Sat, 20 Nov 2010 18:22:05 GMT
Content-Length: 29463
Connection: close
Set-Cookie: bbquotehistory=INDU%3AIND%3B; Expires=Sun, 20-Nov-2011 18:22:05 GMT


<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml"">
<head xmlns:webvar="http://www.bloom
...[SNIP]...
</script>
<script type="text/javascript" src="http://cdn.gotraffic.net/v/20101116_172122/javascripts/main-min.js">//</script>
...[SNIP]...
</script>
<script type="text/javascript" src="http://cdn.gotraffic.net/v/20101116_172122/javascripts/ab-min.js">//</script>

<link href="http://cdn.gotraffic.net/v/20101116_172122/stylesheets/main-min.css" rel="stylesheet" rev="stylesheet" type="text/css" media="screen" />

<!--[if IE 6]>
...[SNIP]...
<body xmlns:webvar="http://www.bloomberg.com/webvar" class="markets">
<script type="text/javascript" src="http://www.googletagservices.com/tag/static/google_services.js">//</script>
...[SNIP]...
<li>
<a href="http://www.businessweek.com/">Businessweek.com</a>
...[SNIP]...
<li>
<a href="http://www.bloombergsports.com/">Bloomberg Sports</a>
...[SNIP]...
</div>
<script src="http://jlinks.industrybrains.com/jsct?sid=942&amp;ct=BLOOMBERG_PERSONAL_FINANCE&amp;tr=BLOOMBERG_PF_QUOTES&amp;num=5&amp;layt=1&amp;fmt=simp" type="text/javascript"><!-- -->
...[SNIP]...
</script>
<script type="text/javascript" src="http://pagead2.googlesyndication.com/pagead/show_ads.js">//</script>
...[SNIP]...
<li>
<a href="http://affiliates.iamplify.com/scripts/t.php?aid=fc5acad9&amp;bid=b6b4b7f0">Keene On Demand</a>
...[SNIP]...
<li>
<a href="http://www.businessweek.com/" id="footer_businessweek" rel="external">Bloomberg Businessweek</a>
...[SNIP]...
<li>
<a href="http://bx.businessweek.com/" id="footer_businessexchange" rel="external">Business Exchange</a>
...[SNIP]...
<li>
<a href="http://twitter.com/bloombergnow" id="footer_twitter" rel="external">BloombergNow on Twitter</a>
...[SNIP]...
<li>
<a href="http://www.facebook.com/BloombergNow" id="footer_facebook" rel="external">BloombergNow on Facebook</a>
...[SNIP]...
<li>
<a href="http://www.bgov.com/" id="footer_bgov" rel="external">Bloomberg Government</a>
...[SNIP]...
<li>
<a href="http://www.bloomberglaw.com" id="footer_blaw" rel="external">Bloomberg Law</a>
...[SNIP]...
<li>
<a href="http://www.bloomberglink.com/" id="footer_blaw" rel="external">Bloomberg Link</a>
...[SNIP]...
<li>
<a href="http://www.newenergyfinance.com/" id="footer_new_energy_finance" rel="external">Bloomberg New Energy Finance</a>
...[SNIP]...
<li>
<a href="http://www.wiley.com/remsection.cgi?discount=BLOOM&amp;navid=404407" id="footer_bpress" rel="external">Bloomberg Press</a>
...[SNIP]...
<li>
<a href="http://www.bloombergsports.com/" id="footer_bsports" rel="external">Bloomberg Sports</a>
...[SNIP]...
<li>
<a href="http://www.bloombergutv.com/" id="footer_butv" rel="external">Bloomberg UTV</a>
...[SNIP]...
<noscript>
<img alt="" height="0" width="0" style="display:none" src="http://b.scorecardresearch.com/b?c1=2&amp;c2=3005059&amp;c3=&amp;c4=&amp;c5=&amp;c6=&amp;c15=&amp;cv=1.3&amp;cj=1"/>
</noscript>
...[SNIP]...
</script>
<script type="text/javascript" src="http://js.revsci.net/gateway/gw.js?csid=K05539">// </script>
...[SNIP]...

4. Cross-domain script include  previous  next
There are 152 instances of this issue:

Issue background

When an application includes a script from an external domain, this script is executed by the browser within the security context of the invoking application. The script can therefore do anything that the application's own scripts can do, such as accessing application data and performing actions within the context of the current user.

If you include a script from an external domain, then you are trusting that domain with the data and functionality of your application, and you are trusting the domain's own security to prevent an attacker from modifying the script to perform malicious actions within your application.

Issue remediation

Scripts should not be included from untrusted domains. If you have a requirement which a third-party script appears to fulfil, then you should ideally copy the contents of that script onto your own domain and include it from there. If that is not possible (e.g. for licensing reasons) then you should consider reimplementing the script's functionality within your own code.


4.1. http://www.bloomberg.com/  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.bloomberg.com
Path:   /

Issue detail

The response dynamically includes the following scripts from other domains:

Request

GET /?cmpid=cof_2 HTTP/1.1
Host: www.bloomberg.com
Proxy-Connection: keep-alive
Referer: http://s0.2mdn.net/1797755/Coffee_v1_300x250.swf
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.7 (KHTML, like Gecko) Chrome/7.0.517.44 Safari/534.7
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3

Response

HTTP/1.1 200 OK
Server: Sun-Java-System-Web-Server/7.0
Vary: Accept-Encoding
ETag: W/"696f35ab04d72280565e7e26fa51452f"
X-runtime: 11
Content-Type: text/html; charset=utf-8
Proxy-agent: Sun-Java-System-Web-Server/7.0
Cache-Control: private, max-age=51
Date: Sat, 20 Nov 2010 18:02:27 GMT
Connection: close
Content-Length: 77803

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN"
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xmlns:og="http://opengraphprotocol.org/sc
...[SNIP]...
</script>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/main-min.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/ab-min.js" type="text/javascript"></script>
...[SNIP]...
<link href="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionV5i/oo_style.css" media="screen" rel="stylesheet" type="text/css" /> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionV5i/oo_engine.min.js" type="text/javascript"></script> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionV5i/oo_conf_int.js" type="text/javascript"></script>
...[SNIP]...
<body class="home">
<script src="http://www.googletagservices.com/tag/static/google_services.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script type="text/javascript" src="http://pagead2.googlesyndication.com/pagead/show_ads.js">
</script>
...[SNIP]...
</noscript>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/s_code_p.js" type="text/javascript"></script> <link href="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_style.css" media="screen" rel="stylesheet" type="text/css" /> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_engine_c.js" type="text/javascript"></script> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_conf_en-US_inline.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script type="text/javascript" src="http://js.revsci.net/gateway/gw.js?csid=K05539"></script>
...[SNIP]...

4.2. http://www.bloomberg.com/about/  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.bloomberg.com
Path:   /about/

Issue detail

The response dynamically includes the following scripts from other domains:

Request

GET /about/ HTTP/1.1
Host: www.bloomberg.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmv=30057196.|3=opt=no-opt=1,; s_sess=%20s_ria%3Dflash%257CSilverlight%25204.0%3B%20s_campaign%3Dcof_2%3B%20s_cc%3Dtrue%3B%20ev1%3Dtv%253Ahome%3B%20s_sq%3D%3B; __utmz=30057196.1290273703.1.1.utmcsr=s0.2mdn.net|utmccn=(referral)|utmcmd=referral|utmcct=/1797755/Coffee_v1_300x250.swf; path_cookie=_news; BT=; oo_int_hit=1; oo_int_percent=0; rsi_segs=; s_vi=[CS]v1|267401DC851D2580-4000012F803267BB[CE]; OAX=rnneEkzoA7IACz4K; __utma=30057196.685584106.1290273703.1290273703.1290273703.1; __utmc=30057196; RMFD=011PJr8MO1021wJe; __utmb=30057196.3.9.1290273791381; opt=no-opt;

Response

HTTP/1.1 200 OK
Server: Sun-Java-System-Web-Server/7.0
Cache-Control: max-age=900
ETag: W/"953173fa34438143ee36f8ce0f8b7acf"
X-runtime: 123
Content-Type: text/html; charset=utf-8
Cache-Control: max-age=120, private
Proxy-agent: Sun-Java-System-Web-Server/7.0
Date: Sat, 20 Nov 2010 18:22:14 GMT
Content-Length: 28304
Connection: close
Set-Cookie: ad_description=%2Fabout%2Findex; path=/

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN"
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xmlns:og="http://opengraphprotocol.org/sc
...[SNIP]...
</script>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/main-min.js" type="text/javascript"></script>
...[SNIP]...
<link href="http://cdn.gotraffic.net/v/20101118_153606/stylesheets/about_swf.css" media="screen" rel="stylesheet" type="text/css" />


<script src="http://ajax.googleapis.com/ajax/libs/swfobject/2.2/swfobject.js" type="text/javascript"></script>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/about_swf.js" type="text/javascript"></script>
...[SNIP]...
<body class="about">
<script src="http://www.googletagservices.com/tag/static/google_services.js" type="text/javascript"></script>
...[SNIP]...
</noscript>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/s_code_p.js" type="text/javascript"></script> <link href="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_style.css" media="screen" rel="stylesheet" type="text/css" /> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_engine_c.js" type="text/javascript"></script> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_conf_en-US_inline.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script type="text/javascript" src="http://js.revsci.net/gateway/gw.js?csid=K05539"></script>
...[SNIP]...

4.3. http://www.bloomberg.com/about/careers/  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.bloomberg.com
Path:   /about/careers/

Issue detail

The response dynamically includes the following scripts from other domains:

Request

GET /about/careers/ HTTP/1.1
Host: www.bloomberg.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmv=30057196.|3=opt=no-opt=1,; s_sess=%20s_ria%3Dflash%257CSilverlight%25204.0%3B%20s_campaign%3Dcof_2%3B%20s_cc%3Dtrue%3B%20ev1%3Dtv%253Ahome%3B%20s_sq%3D%3B; __utmz=30057196.1290273703.1.1.utmcsr=s0.2mdn.net|utmccn=(referral)|utmcmd=referral|utmcct=/1797755/Coffee_v1_300x250.swf; path_cookie=_news; BT=; oo_int_hit=1; oo_int_percent=0; rsi_segs=; s_vi=[CS]v1|267401DC851D2580-4000012F803267BB[CE]; OAX=rnneEkzoA7IACz4K; __utma=30057196.685584106.1290273703.1290273703.1290273703.1; __utmc=30057196; RMFD=011PJr8MO1021wJe; __utmb=30057196.3.9.1290273791381; opt=no-opt;

Response

HTTP/1.1 200 OK
Server: Sun-Java-System-Web-Server/7.0
Cache-Control: max-age=900
ETag: W/"d094de09c7ffc079235b0d0ed6ecc415"
X-runtime: 109
Content-Type: text/html; charset=utf-8
Cache-Control: max-age=120, private
Proxy-agent: Sun-Java-System-Web-Server/7.0
Date: Sat, 20 Nov 2010 18:22:16 GMT
Connection: close
Connection: Transfer-Encoding
Set-Cookie: ad_description=%2Fabout%2Fcareers%2Findex; path=/
Content-Length: 36779

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN"
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xmlns:og="http://opengraphprotocol.org/sc
...[SNIP]...
</script>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/main-min.js" type="text/javascript"></script>
...[SNIP]...
<link href="http://cdn.gotraffic.net/v/20101118_153606/stylesheets/about_swf.css" media="screen" rel="stylesheet" type="text/css" />


<script src="http://ajax.googleapis.com/ajax/libs/swfobject/2.2/swfobject.js" type="text/javascript"></script>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/swfUtility.js" type="text/javascript"></script>
...[SNIP]...
<body class="about_careers">
<script src="http://www.googletagservices.com/tag/static/google_services.js" type="text/javascript"></script>
...[SNIP]...
</noscript>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/s_code_p.js" type="text/javascript"></script> <link href="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_style.css" media="screen" rel="stylesheet" type="text/css" /> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_engine_c.js" type="text/javascript"></script> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_conf_en-US_inline.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script type="text/javascript" src="http://js.revsci.net/gateway/gw.js?csid=K05539"></script>
...[SNIP]...

4.4. http://www.bloomberg.com/about/contact/  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.bloomberg.com
Path:   /about/contact/

Issue detail

The response dynamically includes the following scripts from other domains:

Request

GET /about/contact/ HTTP/1.1
Host: www.bloomberg.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmv=30057196.|3=opt=no-opt=1,; s_sess=%20s_ria%3Dflash%257CSilverlight%25204.0%3B%20s_campaign%3Dcof_2%3B%20s_cc%3Dtrue%3B%20ev1%3Dtv%253Ahome%3B%20s_sq%3D%3B; __utmz=30057196.1290273703.1.1.utmcsr=s0.2mdn.net|utmccn=(referral)|utmcmd=referral|utmcct=/1797755/Coffee_v1_300x250.swf; path_cookie=_news; BT=; oo_int_hit=1; oo_int_percent=0; rsi_segs=; s_vi=[CS]v1|267401DC851D2580-4000012F803267BB[CE]; OAX=rnneEkzoA7IACz4K; __utma=30057196.685584106.1290273703.1290273703.1290273703.1; __utmc=30057196; RMFD=011PJr8MO1021wJe; __utmb=30057196.3.9.1290273791381; opt=no-opt;

Response

HTTP/1.1 200 OK
Server: Sun-Java-System-Web-Server/7.0
Cache-Control: max-age=900
ETag: W/"981bff1f1c1b282d65b8c79b2c5ee1e7"
X-runtime: 120
Content-Type: text/html; charset=utf-8
Cache-Control: max-age=120, private
Proxy-agent: Sun-Java-System-Web-Server/7.0
Date: Sat, 20 Nov 2010 18:22:16 GMT
Content-Length: 26538
Connection: close
Set-Cookie: ad_description=%2Fabout%2Fcontact%2Findex; path=/

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN"
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xmlns:og="http://opengraphprotocol.org/sc
...[SNIP]...
</script>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/main-min.js" type="text/javascript"></script>
...[SNIP]...
<link href="http://cdn.gotraffic.net/v/20101118_153606/stylesheets/about_swf.css" media="screen" rel="stylesheet" type="text/css" />


<script src="http://ajax.googleapis.com/ajax/libs/swfobject/2.2/swfobject.js" type="text/javascript"></script>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/about_swf.js" type="text/javascript"></script>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/bbgskypeCheck.js" type="text/javascript"></script>
...[SNIP]...
<body class="about_contact">
<script src="http://www.googletagservices.com/tag/static/google_services.js" type="text/javascript"></script>
...[SNIP]...
</noscript>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/s_code_p.js" type="text/javascript"></script> <link href="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_style.css" media="screen" rel="stylesheet" type="text/css" /> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_engine_c.js" type="text/javascript"></script> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_conf_en-US_inline.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script type="text/javascript" src="http://js.revsci.net/gateway/gw.js?csid=K05539"></script>
...[SNIP]...

4.5. http://www.bloomberg.com/about/pressroom/  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.bloomberg.com
Path:   /about/pressroom/

Issue detail

The response dynamically includes the following scripts from other domains:

Request

GET /about/pressroom/ HTTP/1.1
Host: www.bloomberg.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmv=30057196.|3=opt=no-opt=1,; s_sess=%20s_ria%3Dflash%257CSilverlight%25204.0%3B%20s_campaign%3Dcof_2%3B%20s_cc%3Dtrue%3B%20ev1%3Dtv%253Ahome%3B%20s_sq%3D%3B; __utmz=30057196.1290273703.1.1.utmcsr=s0.2mdn.net|utmccn=(referral)|utmcmd=referral|utmcct=/1797755/Coffee_v1_300x250.swf; path_cookie=_news; BT=; oo_int_hit=1; oo_int_percent=0; rsi_segs=; s_vi=[CS]v1|267401DC851D2580-4000012F803267BB[CE]; OAX=rnneEkzoA7IACz4K; __utma=30057196.685584106.1290273703.1290273703.1290273703.1; __utmc=30057196; RMFD=011PJr8MO1021wJe; __utmb=30057196.3.9.1290273791381; opt=no-opt;

Response

HTTP/1.1 200 OK
Server: Sun-Java-System-Web-Server/7.0
Cache-Control: max-age=900
ETag: W/"7b6914d73401b82e0ca46bdaafaa324a"
X-runtime: 197
Content-Type: text/html; charset=utf-8
Cache-Control: max-age=120, private
Proxy-agent: Sun-Java-System-Web-Server/7.0
Date: Sat, 20 Nov 2010 18:22:17 GMT
Content-Length: 31525
Connection: close
Set-Cookie: ad_description=%2Fabout%2Fpressroom%2Findex; path=/

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN"
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xmlns:og="http://opengraphprotocol.org/sc
...[SNIP]...
</script>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/main-min.js" type="text/javascript"></script>
...[SNIP]...
<link href="http://cdn.gotraffic.net/v/20101118_153606/stylesheets/about_swf.css" media="screen" rel="stylesheet" type="text/css" />


<script src="http://ajax.googleapis.com/ajax/libs/swfobject/2.2/swfobject.js" type="text/javascript"></script>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/about_swf.js" type="text/javascript"></script>
...[SNIP]...
<body class="pressroom">
<script src="http://www.googletagservices.com/tag/static/google_services.js" type="text/javascript"></script>
...[SNIP]...
</noscript>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/s_code_p.js" type="text/javascript"></script> <link href="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_style.css" media="screen" rel="stylesheet" type="text/css" /> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_engine_c.js" type="text/javascript"></script> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_conf_en-US_inline.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script type="text/javascript" src="http://js.revsci.net/gateway/gw.js?csid=K05539"></script>
...[SNIP]...

4.6. http://www.bloomberg.com/apps/feedback  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.bloomberg.com
Path:   /apps/feedback

Issue detail

The response dynamically includes the following scripts from other domains:

Request

GET /apps/feedback HTTP/1.1
Host: www.bloomberg.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmv=30057196.|3=opt=no-opt=1,; s_sess=%20s_ria%3Dflash%257CSilverlight%25204.0%3B%20s_campaign%3Dcof_2%3B%20s_cc%3Dtrue%3B%20ev1%3Dtv%253Ahome%3B%20s_sq%3D%3B; __utmz=30057196.1290273703.1.1.utmcsr=s0.2mdn.net|utmccn=(referral)|utmcmd=referral|utmcct=/1797755/Coffee_v1_300x250.swf; path_cookie=_news; BT=; oo_int_hit=1; oo_int_percent=0; rsi_segs=; s_vi=[CS]v1|267401DC851D2580-4000012F803267BB[CE]; OAX=rnneEkzoA7IACz4K; __utma=30057196.685584106.1290273703.1290273703.1290273703.1; __utmc=30057196; RMFD=011PJr8MO1021wJe; __utmb=30057196.3.9.1290273791381; opt=no-opt;

Response

HTTP/1.1 200 OK
Server: Sun-Java-System-Web-Server/7.0
Cache-Control: max-age=900
Content-Type: text/html;CharSet=UTF-8
Date: Sat, 20 Nov 2010 18:22:03 GMT
Content-Length: 18477
Connection: close


<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml"><head xmlns:webvar="http://www.bloomberg.com/
...[SNIP]...
</script>
<script type="text/javascript" src="http://cdn.gotraffic.net/v/20101116_172122/javascripts/main-min.js">//</script>
...[SNIP]...
</script>
<script type="text/javascript" src="http://cdn.gotraffic.net/v/20101116_172122/javascripts/ab-min.js">//</script>
...[SNIP]...
<body xmlns:webvar="http://www.bloomberg.com/webvar" class="footer_small">
<script type="text/javascript" src="http://www.googletagservices.com/tag/static/google_services.js">//</script>
...[SNIP]...
</script>
<script type="text/javascript" src="http://js.revsci.net/gateway/gw.js?csid=K05539">// </script>
...[SNIP]...

4.7. http://www.bloomberg.com/apps/news  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.bloomberg.com
Path:   /apps/news

Issue detail

The response dynamically includes the following scripts from other domains:

Request

GET /apps/news?pid=newsarchive& HTTP/1.1
Host: www.bloomberg.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmv=30057196.|3=opt=no-opt=1,; s_sess=%20s_ria%3Dflash%257CSilverlight%25204.0%3B%20s_campaign%3Dcof_2%3B%20s_cc%3Dtrue%3B%20ev1%3Dtv%253Ahome%3B%20s_sq%3D%3B; __utmz=30057196.1290273703.1.1.utmcsr=s0.2mdn.net|utmccn=(referral)|utmcmd=referral|utmcct=/1797755/Coffee_v1_300x250.swf; path_cookie=_news; BT=; oo_int_hit=1; oo_int_percent=0; rsi_segs=; s_vi=[CS]v1|267401DC851D2580-4000012F803267BB[CE]; OAX=rnneEkzoA7IACz4K; __utma=30057196.685584106.1290273703.1290273703.1290273703.1; __utmc=30057196; RMFD=011PJr8MO1021wJe; __utmb=30057196.3.9.1290273791381; opt=no-opt;

Response

HTTP/1.1 200 OK
Server: Sun-Java-System-Web-Server/7.0
Content-Type: text/html;charset=UTF-8
Cache-Control: max-age=57
Date: Sat, 20 Nov 2010 18:22:05 GMT
Content-Length: 29764
Connection: close

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml"
xmlns:fb="http://www.facebook.com/2008/
...[SNIP]...
</script>
<script type="text/javascript" src="http://cdn.gotraffic.net/v/20101116_172122/javascripts/main-min.js">//</script>
...[SNIP]...
</script>
<script type="text/javascript" src="http://cdn.gotraffic.net/v/20101116_172122/javascripts/ab-min.js">//</script>
...[SNIP]...
<body xmlns:webvar="http://www.bloomberg.com/webvar" class="news">
<script type="text/javascript" src="http://www.googletagservices.com/tag/static/google_services.js">//</script>
...[SNIP]...
</div>
<script src="http://platform.twitter.com/widgets.js" type="text/javascript">//</script>
...[SNIP]...
</script>
<script type="text/javascript" src="http://pagead2.googlesyndication.com/pagead/show_ads.js">//</script>
...[SNIP]...
</script>
<script type="text/javascript" src="http://js.revsci.net/gateway/gw.js?csid=K05539">// </script>
...[SNIP]...

4.8. http://www.bloomberg.com/apps/quote  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.bloomberg.com
Path:   /apps/quote

Issue detail

The response dynamically includes the following scripts from other domains:

Request

GET /apps/quote?ticker=INDU:IND HTTP/1.1
Host: www.bloomberg.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmv=30057196.|3=opt=no-opt=1,; s_sess=%20s_ria%3Dflash%257CSilverlight%25204.0%3B%20s_campaign%3Dcof_2%3B%20s_cc%3Dtrue%3B%20ev1%3Dtv%253Ahome%3B%20s_sq%3D%3B; __utmz=30057196.1290273703.1.1.utmcsr=s0.2mdn.net|utmccn=(referral)|utmcmd=referral|utmcct=/1797755/Coffee_v1_300x250.swf; path_cookie=_news; BT=; oo_int_hit=1; oo_int_percent=0; rsi_segs=; s_vi=[CS]v1|267401DC851D2580-4000012F803267BB[CE]; OAX=rnneEkzoA7IACz4K; __utma=30057196.685584106.1290273703.1290273703.1290273703.1; __utmc=30057196; RMFD=011PJr8MO1021wJe; __utmb=30057196.3.9.1290273791381; opt=no-opt;

Response

HTTP/1.1 200 OK
Server: Sun-Java-System-Web-Server/7.0
Cache-Control: private,max-age=0
Content-Type: text/html
Date: Sat, 20 Nov 2010 18:22:05 GMT
Content-Length: 29463
Connection: close
Set-Cookie: bbquotehistory=INDU%3AIND%3B; Expires=Sun, 20-Nov-2011 18:22:05 GMT


<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml"">
<head xmlns:webvar="http://www.bloom
...[SNIP]...
</script>
<script type="text/javascript" src="http://cdn.gotraffic.net/v/20101116_172122/javascripts/main-min.js">//</script>
...[SNIP]...
</script>
<script type="text/javascript" src="http://cdn.gotraffic.net/v/20101116_172122/javascripts/ab-min.js">//</script>
...[SNIP]...
<body xmlns:webvar="http://www.bloomberg.com/webvar" class="markets">
<script type="text/javascript" src="http://www.googletagservices.com/tag/static/google_services.js">//</script>
...[SNIP]...
</div>
<script src="http://jlinks.industrybrains.com/jsct?sid=942&amp;ct=BLOOMBERG_PERSONAL_FINANCE&amp;tr=BLOOMBERG_PF_QUOTES&amp;num=5&amp;layt=1&amp;fmt=simp" type="text/javascript"><!-- -->
...[SNIP]...
</script>
<script type="text/javascript" src="http://pagead2.googlesyndication.com/pagead/show_ads.js">//</script>
...[SNIP]...
</script>
<script type="text/javascript" src="http://js.revsci.net/gateway/gw.js?csid=K05539">// </script>
...[SNIP]...

4.9. http://www.bloomberg.com/bloomberg-web-news  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.bloomberg.com
Path:   /bloomberg-web-news

Issue detail

The response dynamically includes the following scripts from other domains:

Request

GET /bloomberg-web-news HTTP/1.1
Host: www.bloomberg.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmv=30057196.|3=opt=no-opt=1,; s_sess=%20s_ria%3Dflash%257CSilverlight%25204.0%3B%20s_campaign%3Dcof_2%3B%20s_cc%3Dtrue%3B%20ev1%3Dtv%253Ahome%3B%20s_sq%3D%3B; __utmz=30057196.1290273703.1.1.utmcsr=s0.2mdn.net|utmccn=(referral)|utmcmd=referral|utmcct=/1797755/Coffee_v1_300x250.swf; path_cookie=_news; BT=; oo_int_hit=1; oo_int_percent=0; rsi_segs=; s_vi=[CS]v1|267401DC851D2580-4000012F803267BB[CE]; OAX=rnneEkzoA7IACz4K; __utma=30057196.685584106.1290273703.1290273703.1290273703.1; __utmc=30057196; RMFD=011PJr8MO1021wJe; __utmb=30057196.3.9.1290273791381; opt=no-opt;

Response

HTTP/1.1 404 Not Found
Server: Sun-Java-System-Web-Server/7.0
Cache-Control: max-age=900
Content-Type: text/html
X-N: S
Date: Sat, 20 Nov 2010 18:22:22 GMT
Content-Length: 19583
Connection: close


<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN"
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head><meta http-equiv="Content-Type"
...[SNIP]...
<body class="">

<script src="http://www.googletagservices.com/tag/static/google_services.js" type="text/javascript"></script>
...[SNIP]...
<!-- Revenue Science -->

<script type="text/javascript" src="http://js.revsci.net/gateway/gw.js?csid=K05539"></script>
...[SNIP]...
<!-- Quantcast -->

<script src="http://edge.quantserve.com/quant.js" type="text/javascript">// </script>
...[SNIP]...

4.10. http://www.bloomberg.com/blp.video/live  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.bloomberg.com
Path:   /blp.video/live

Issue detail

The response dynamically includes the following scripts from other domains:

Request

GET /blp.video/live HTTP/1.1
Host: www.bloomberg.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmv=30057196.|3=opt=no-opt=1,; s_sess=%20s_ria%3Dflash%257CSilverlight%25204.0%3B%20s_campaign%3Dcof_2%3B%20s_cc%3Dtrue%3B%20ev1%3Dtv%253Ahome%3B%20s_sq%3D%3B; __utmz=30057196.1290273703.1.1.utmcsr=s0.2mdn.net|utmccn=(referral)|utmcmd=referral|utmcct=/1797755/Coffee_v1_300x250.swf; path_cookie=_news; BT=; oo_int_hit=1; oo_int_percent=0; rsi_segs=; s_vi=[CS]v1|267401DC851D2580-4000012F803267BB[CE]; OAX=rnneEkzoA7IACz4K; __utma=30057196.685584106.1290273703.1290273703.1290273703.1; __utmc=30057196; RMFD=011PJr8MO1021wJe; __utmb=30057196.3.9.1290273791381; opt=no-opt;

Response

HTTP/1.1 404 Not Found
Server: Sun-Java-System-Web-Server/7.0
Cache-Control: max-age=900
Content-Type: text/html
X-N: S
Date: Sat, 20 Nov 2010 18:22:24 GMT
Content-Length: 19583
Connection: close


<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN"
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head><meta http-equiv="Content-Type"
...[SNIP]...
<body class="">

<script src="http://www.googletagservices.com/tag/static/google_services.js" type="text/javascript"></script>
...[SNIP]...
<!-- Revenue Science -->

<script type="text/javascript" src="http://js.revsci.net/gateway/gw.js?csid=K05539"></script>
...[SNIP]...
<!-- Quantcast -->

<script src="http://edge.quantserve.com/quant.js" type="text/javascript">// </script>
...[SNIP]...

4.11. http://www.bloomberg.com/entrepreneurs/  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.bloomberg.com
Path:   /entrepreneurs/

Issue detail

The response dynamically includes the following scripts from other domains:

Request

GET /entrepreneurs/ HTTP/1.1
Host: www.bloomberg.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmv=30057196.|3=opt=no-opt=1,; s_sess=%20s_ria%3Dflash%257CSilverlight%25204.0%3B%20s_campaign%3Dcof_2%3B%20s_cc%3Dtrue%3B%20ev1%3Dtv%253Ahome%3B%20s_sq%3D%3B; __utmz=30057196.1290273703.1.1.utmcsr=s0.2mdn.net|utmccn=(referral)|utmcmd=referral|utmcct=/1797755/Coffee_v1_300x250.swf; path_cookie=_news; BT=; oo_int_hit=1; oo_int_percent=0; rsi_segs=; s_vi=[CS]v1|267401DC851D2580-4000012F803267BB[CE]; OAX=rnneEkzoA7IACz4K; __utma=30057196.685584106.1290273703.1290273703.1290273703.1; __utmc=30057196; RMFD=011PJr8MO1021wJe; __utmb=30057196.3.9.1290273791381; opt=no-opt;

Response

HTTP/1.1 200 OK
Server: Sun-Java-System-Web-Server/7.0
ETag: W/"2dc1a203f092e9933c62271007b271a7"
X-runtime: 14
Content-Type: text/html; charset=utf-8
Proxy-agent: Sun-Java-System-Web-Server/7.0
Cache-Control: private, max-age=2
Date: Sat, 20 Nov 2010 18:21:48 GMT
Connection: close
Connection: Transfer-Encoding
Content-Length: 37407

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN"
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xmlns:og="http://opengraphprotocol.org/sc
...[SNIP]...
</script>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/main-min.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/ab-min.js" type="text/javascript"></script>
...[SNIP]...
<body class="entrepreneurs">
<script src="http://www.googletagservices.com/tag/static/google_services.js" type="text/javascript"></script>
...[SNIP]...
</noscript>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/s_code_p.js" type="text/javascript"></script> <link href="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_style.css" media="screen" rel="stylesheet" type="text/css" /> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_engine_c.js" type="text/javascript"></script> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_conf_en-US_inline.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script type="text/javascript" src="http://js.revsci.net/gateway/gw.js?csid=K05539"></script>
...[SNIP]...

4.12. http://www.bloomberg.com/help.html  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.bloomberg.com
Path:   /help.html

Issue detail

The response dynamically includes the following script from another domain:

Request

GET /help.html HTTP/1.1
Host: www.bloomberg.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmv=30057196.|3=opt=no-opt=1,; s_sess=%20s_ria%3Dflash%257CSilverlight%25204.0%3B%20s_campaign%3Dcof_2%3B%20s_cc%3Dtrue%3B%20ev1%3Dtv%253Ahome%3B%20s_sq%3D%3B; __utmz=30057196.1290273703.1.1.utmcsr=s0.2mdn.net|utmccn=(referral)|utmcmd=referral|utmcct=/1797755/Coffee_v1_300x250.swf; path_cookie=_news; BT=; oo_int_hit=1; oo_int_percent=0; rsi_segs=; s_vi=[CS]v1|267401DC851D2580-4000012F803267BB[CE]; OAX=rnneEkzoA7IACz4K; __utma=30057196.685584106.1290273703.1290273703.1290273703.1; __utmc=30057196; RMFD=011PJr8MO1021wJe; __utmb=30057196.3.9.1290273791381; opt=no-opt;

Response

HTTP/1.1 200 OK
Server: Sun-Java-System-Web-Server/7.0
Content-Type: text/html
Last-Modified: Fri, 19 Nov 2010 11:00:01 GMT
ETag: W/"cef-4ce658b1"
Cache-Control: max-age=56
Expires: Sat, 20 Nov 2010 18:23:16 GMT
Date: Sat, 20 Nov 2010 18:22:20 GMT
Content-Length: 10718
Connection: close

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml"><head xmlns:webvar="http://www.bloomberg.com/we
...[SNIP]...
</script>
<script type="text/javascript" src="http://www.googletagservices.com/tag/static/google_services_async.js">//</script>
...[SNIP]...

4.13. http://www.bloomberg.com/leaders/  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.bloomberg.com
Path:   /leaders/

Issue detail

The response dynamically includes the following scripts from other domains:

Request

GET /leaders/ HTTP/1.1
Host: www.bloomberg.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmv=30057196.|3=opt=no-opt=1,; s_sess=%20s_ria%3Dflash%257CSilverlight%25204.0%3B%20s_campaign%3Dcof_2%3B%20s_cc%3Dtrue%3B%20ev1%3Dtv%253Ahome%3B%20s_sq%3D%3B; __utmz=30057196.1290273703.1.1.utmcsr=s0.2mdn.net|utmccn=(referral)|utmcmd=referral|utmcct=/1797755/Coffee_v1_300x250.swf; path_cookie=_news; BT=; oo_int_hit=1; oo_int_percent=0; rsi_segs=; s_vi=[CS]v1|267401DC851D2580-4000012F803267BB[CE]; OAX=rnneEkzoA7IACz4K; __utma=30057196.685584106.1290273703.1290273703.1290273703.1; __utmc=30057196; RMFD=011PJr8MO1021wJe; __utmb=30057196.3.9.1290273791381; opt=no-opt;

Response

HTTP/1.1 200 OK
Server: Sun-Java-System-Web-Server/7.0
Proxy-agent: Sun-Java-System-Web-Server/7.0
Last-Modified: Sat, 20 Nov 2010 18:14:05 GMT
Content-Type: text/html
Cache-Control: max-age=16
Date: Sat, 20 Nov 2010 18:21:47 GMT
Connection: close
Connection: Transfer-Encoding
Content-Length: 43644

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN"
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xmlns:og="http://opengraphprotocol.org/sc
...[SNIP]...
</script>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/main-min.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/ab-min.js" type="text/javascript"></script>
...[SNIP]...
<body class="leaders">
<script src="http://www.googletagservices.com/tag/static/google_services.js" type="text/javascript"></script>
...[SNIP]...
</noscript>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/s_code_p.js" type="text/javascript"></script> <link href="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_style.css" media="screen" rel="stylesheet" type="text/css" /> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_engine_c.js" type="text/javascript"></script> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_conf_en-US_inline.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script type="text/javascript" src="http://js.revsci.net/gateway/gw.js?csid=K05539"></script>
...[SNIP]...

4.14. http://www.bloomberg.com/markets-magazine/  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.bloomberg.com
Path:   /markets-magazine/

Issue detail

The response dynamically includes the following scripts from other domains:

Request

GET /markets-magazine/ HTTP/1.1
Host: www.bloomberg.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmv=30057196.|3=opt=no-opt=1,; s_sess=%20s_ria%3Dflash%257CSilverlight%25204.0%3B%20s_campaign%3Dcof_2%3B%20s_cc%3Dtrue%3B%20ev1%3Dtv%253Ahome%3B%20s_sq%3D%3B; __utmz=30057196.1290273703.1.1.utmcsr=s0.2mdn.net|utmccn=(referral)|utmcmd=referral|utmcct=/1797755/Coffee_v1_300x250.swf; path_cookie=_news; BT=; oo_int_hit=1; oo_int_percent=0; rsi_segs=; s_vi=[CS]v1|267401DC851D2580-4000012F803267BB[CE]; OAX=rnneEkzoA7IACz4K; __utma=30057196.685584106.1290273703.1290273703.1290273703.1; __utmc=30057196; RMFD=011PJr8MO1021wJe; __utmb=30057196.3.9.1290273791381; opt=no-opt;

Response

HTTP/1.1 200 OK
Server: Sun-Java-System-Web-Server/7.0
ETag: W/"bb9b1d09f3695ea03ec3ea42aee083d0"
X-runtime: 14
Content-Type: text/html; charset=utf-8
Proxy-agent: Sun-Java-System-Web-Server/7.0
Cache-Control: private, max-age=16
Date: Sat, 20 Nov 2010 18:21:47 GMT
Connection: close
Connection: Transfer-Encoding
Content-Length: 37956

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN"
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xmlns:og="http://opengraphprotocol.org/sc
...[SNIP]...
</script>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/main-min.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/ab-min.js" type="text/javascript"></script>
...[SNIP]...
<body class="news markets-magazine">
<script src="http://www.googletagservices.com/tag/static/google_services.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script type="text/javascript" src="http://pagead2.googlesyndication.com/pagead/show_ads.js">
</script>
...[SNIP]...
</noscript>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/s_code_p.js" type="text/javascript"></script> <link href="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_style.css" media="screen" rel="stylesheet" type="text/css" /> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_engine_c.js" type="text/javascript"></script> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_conf_en-US_inline.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script type="text/javascript" src="http://js.revsci.net/gateway/gw.js?csid=K05539"></script>
...[SNIP]...

4.15. http://www.bloomberg.com/markets/  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.bloomberg.com
Path:   /markets/

Issue detail

The response dynamically includes the following scripts from other domains:

Request

GET /markets/ HTTP/1.1
Host: www.bloomberg.com
Proxy-Connection: keep-alive
Referer: http://www.bloomberg.com/news/2010-11-20/irish-corporate-tax-rate-increase-isn-t-a-condition-for-aid-sarkozy-says.html
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.7 (KHTML, like Gecko) Chrome/7.0.517.44 Safari/534.7
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: oo_int_percent=0; oo_int_hit=1; OAX=rnneEkzoA7IACz4K; RMFD=011PJr8MO1021wJe; __utmz=30057196.1290273703.1.1.utmcsr=s0.2mdn.net|utmccn=(referral)|utmcmd=referral|utmcct=/1797755/Coffee_v1_300x250.swf; s_vi=[CS]v1|267401DC851D2580-4000012F803267BB[CE]; rsi_segs=; BT=; path_cookie=_news; __utma=30057196.685584106.1290273703.1290273703.1290273703.1; __utmc=30057196; __utmv=30057196.|3=opt=no-opt=1,; __utmb=30057196.2.9.1290273791381; s_sess=%20s_ria%3Dflash%257CSilverlight%25204.0%3B%20s_cc%3Dtrue%3B%20s_campaign%3Dcof_2%3B%20ev1%3Dhome%3B%20s_sq%3Dbloombergcom%253D%252526pid%25253Dhome%252526pidt%25253D1%252526oid%25253Dhttp%2525253A//www.bloomberg.com/news/2010-11-20/irish-corporate-tax-rate-increase-isn-t-a-condition-for-aid%252526ot%25253DA%3B; opt=no-opt

Response

HTTP/1.1 200 OK
Server: Sun-Java-System-Web-Server/7.0
Vary: Accept-Encoding
ETag: W/"9d346a836dd56531c28030d9958673ef"
X-runtime: 10
Content-Type: text/html; charset=utf-8
Proxy-agent: Sun-Java-System-Web-Server/7.0
Cache-Control: private, max-age=386
Date: Sat, 20 Nov 2010 18:02:28 GMT
Connection: close
Content-Length: 54339

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN"
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xmlns:og="http://opengraphprotocol.org/sc
...[SNIP]...
</script>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/main-min.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/ab-min.js" type="text/javascript"></script>
...[SNIP]...
</script> <script src="http://www.googletagservices.com/tag/static/google_services.js" type="text/javascript"></script>
...[SNIP]...
<div class="component" >
<script type="text/javascript" src="http://cdn.taboolasyndication.com/libtrc/bloomberg/rbox.js?article">
</script>
...[SNIP]...
</script>
<script type="text/javascript" src="http://pagead2.googlesyndication.com/pagead/show_ads.js">
</script>
...[SNIP]...
</noscript>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/s_code_p.js" type="text/javascript"></script> <link href="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_style.css" media="screen" rel="stylesheet" type="text/css" /> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_engine_c.js" type="text/javascript"></script> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_conf_en-US_inline.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script type="text/javascript" src="http://js.revsci.net/gateway/gw.js?csid=K05539"></script>
...[SNIP]...

4.16. http://www.bloomberg.com/markets/commodities/futures/  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.bloomberg.com
Path:   /markets/commodities/futures/

Issue detail

The response dynamically includes the following scripts from other domains:

Request

GET /markets/commodities/futures/ HTTP/1.1
Host: www.bloomberg.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmv=30057196.|3=opt=no-opt=1,; s_sess=%20s_ria%3Dflash%257CSilverlight%25204.0%3B%20s_campaign%3Dcof_2%3B%20s_cc%3Dtrue%3B%20ev1%3Dtv%253Ahome%3B%20s_sq%3D%3B; __utmz=30057196.1290273703.1.1.utmcsr=s0.2mdn.net|utmccn=(referral)|utmcmd=referral|utmcct=/1797755/Coffee_v1_300x250.swf; path_cookie=_news; BT=; oo_int_hit=1; oo_int_percent=0; rsi_segs=; s_vi=[CS]v1|267401DC851D2580-4000012F803267BB[CE]; OAX=rnneEkzoA7IACz4K; __utma=30057196.685584106.1290273703.1290273703.1290273703.1; __utmc=30057196; RMFD=011PJr8MO1021wJe; __utmb=30057196.3.9.1290273791381; opt=no-opt;

Response

HTTP/1.1 200 OK
Server: Sun-Java-System-Web-Server/7.0
ETag: W/"1568f2f5e1d4b11e3e94e509c13f09f9"
X-runtime: 699
Content-Type: text/html; charset=utf-8
Proxy-agent: Sun-Java-System-Web-Server/7.0
Cache-Control: private, max-age=410
Date: Sat, 20 Nov 2010 18:21:52 GMT
Connection: close
Connection: Transfer-Encoding
Content-Length: 42184

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN"
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xmlns:og="http://opengraphprotocol.org/sc
...[SNIP]...
</script>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/main-min.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/ab-min.js" type="text/javascript"></script>
...[SNIP]...
<body class="markets">
<script src="http://www.googletagservices.com/tag/static/google_services.js" type="text/javascript"></script>
...[SNIP]...
<div class="component" >
<script type="text/javascript" src="http://cdn.taboolasyndication.com/libtrc/bloomberg/rbox.js?article">
</script>
...[SNIP]...
</script>
<script type="text/javascript" src="http://pagead2.googlesyndication.com/pagead/show_ads.js">
</script>
...[SNIP]...
</noscript>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/s_code_p.js" type="text/javascript"></script> <link href="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_style.css" media="screen" rel="stylesheet" type="text/css" /> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_engine_c.js" type="text/javascript"></script> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_conf_en-US_inline.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script type="text/javascript" src="http://js.revsci.net/gateway/gw.js?csid=K05539"></script>
...[SNIP]...

4.17. http://www.bloomberg.com/markets/currencies/  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.bloomberg.com
Path:   /markets/currencies/

Issue detail

The response dynamically includes the following scripts from other domains:

Request

GET /markets/currencies/ HTTP/1.1
Host: www.bloomberg.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmv=30057196.|3=opt=no-opt=1,; s_sess=%20s_ria%3Dflash%257CSilverlight%25204.0%3B%20s_campaign%3Dcof_2%3B%20s_cc%3Dtrue%3B%20ev1%3Dtv%253Ahome%3B%20s_sq%3D%3B; __utmz=30057196.1290273703.1.1.utmcsr=s0.2mdn.net|utmccn=(referral)|utmcmd=referral|utmcct=/1797755/Coffee_v1_300x250.swf; path_cookie=_news; BT=; oo_int_hit=1; oo_int_percent=0; rsi_segs=; s_vi=[CS]v1|267401DC851D2580-4000012F803267BB[CE]; OAX=rnneEkzoA7IACz4K; __utma=30057196.685584106.1290273703.1290273703.1290273703.1; __utmc=30057196; RMFD=011PJr8MO1021wJe; __utmb=30057196.3.9.1290273791381; opt=no-opt;

Response

HTTP/1.1 200 OK
Server: Sun-Java-System-Web-Server/7.0
ETag: W/"9356addab7b335187c2560df1d6c20e8"
X-runtime: 12
Content-Type: text/html; charset=utf-8
Proxy-agent: Sun-Java-System-Web-Server/7.0
Cache-Control: private, max-age=12
Date: Sat, 20 Nov 2010 18:21:50 GMT
Connection: close
Connection: Transfer-Encoding
Content-Length: 76131

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN"
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xmlns:og="http://opengraphprotocol.org/sc
...[SNIP]...
</script>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/main-min.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/ab-min.js" type="text/javascript"></script>
...[SNIP]...
<body class="markets">
<script src="http://www.googletagservices.com/tag/static/google_services.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script type="text/javascript" src="http://pagead2.googlesyndication.com/pagead/show_ads.js">
</script>
...[SNIP]...
</noscript>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/s_code_p.js" type="text/javascript"></script> <link href="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_style.css" media="screen" rel="stylesheet" type="text/css" /> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_engine_c.js" type="text/javascript"></script> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_conf_en-US_inline.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script type="text/javascript" src="http://js.revsci.net/gateway/gw.js?csid=K05539"></script>
...[SNIP]...

4.18. http://www.bloomberg.com/markets/economic-calendar/  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.bloomberg.com
Path:   /markets/economic-calendar/

Issue detail

The response dynamically includes the following scripts from other domains:

Request

GET /markets/economic-calendar/ HTTP/1.1
Host: www.bloomberg.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmv=30057196.|3=opt=no-opt=1,; s_sess=%20s_ria%3Dflash%257CSilverlight%25204.0%3B%20s_campaign%3Dcof_2%3B%20s_cc%3Dtrue%3B%20ev1%3Dtv%253Ahome%3B%20s_sq%3D%3B; __utmz=30057196.1290273703.1.1.utmcsr=s0.2mdn.net|utmccn=(referral)|utmcmd=referral|utmcct=/1797755/Coffee_v1_300x250.swf; path_cookie=_news; BT=; oo_int_hit=1; oo_int_percent=0; rsi_segs=; s_vi=[CS]v1|267401DC851D2580-4000012F803267BB[CE]; OAX=rnneEkzoA7IACz4K; __utma=30057196.685584106.1290273703.1290273703.1290273703.1; __utmc=30057196; RMFD=011PJr8MO1021wJe; __utmb=30057196.3.9.1290273791381; opt=no-opt;

Response

HTTP/1.1 200 OK
Server: Sun-Java-System-Web-Server/7.0
ETag: W/"b346b34cea2d06dfb0aa6be24b2eec51"
X-runtime: 11
Content-Type: text/html; charset=utf-8
Proxy-agent: Sun-Java-System-Web-Server/7.0
Cache-Control: private, max-age=30
Date: Sat, 20 Nov 2010 18:21:56 GMT
Content-Length: 29935
Connection: close

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN"
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xmlns:og="http://opengraphprotocol.org/sc
...[SNIP]...
</script>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/main-min.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/ab-min.js" type="text/javascript"></script>
...[SNIP]...
<body class="markets">
<script src="http://www.googletagservices.com/tag/static/google_services.js" type="text/javascript"></script>
...[SNIP]...
<div class="component" >
<script type="text/javascript" src="http://cdn.taboolasyndication.com/libtrc/bloomberg/rbox.js?article">
</script>
...[SNIP]...
</script>
<script type="text/javascript" src="http://pagead2.googlesyndication.com/pagead/show_ads.js">
</script>
...[SNIP]...
</noscript>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/s_code_p.js" type="text/javascript"></script> <link href="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_style.css" media="screen" rel="stylesheet" type="text/css" /> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_engine_c.js" type="text/javascript"></script> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_conf_en-US_inline.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script type="text/javascript" src="http://js.revsci.net/gateway/gw.js?csid=K05539"></script>
...[SNIP]...

4.19. http://www.bloomberg.com/markets/etfs/  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.bloomberg.com
Path:   /markets/etfs/

Issue detail

The response dynamically includes the following scripts from other domains:

Request

GET /markets/etfs/ HTTP/1.1
Host: www.bloomberg.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmv=30057196.|3=opt=no-opt=1,; s_sess=%20s_ria%3Dflash%257CSilverlight%25204.0%3B%20s_campaign%3Dcof_2%3B%20s_cc%3Dtrue%3B%20ev1%3Dtv%253Ahome%3B%20s_sq%3D%3B; __utmz=30057196.1290273703.1.1.utmcsr=s0.2mdn.net|utmccn=(referral)|utmcmd=referral|utmcct=/1797755/Coffee_v1_300x250.swf; path_cookie=_news; BT=; oo_int_hit=1; oo_int_percent=0; rsi_segs=; s_vi=[CS]v1|267401DC851D2580-4000012F803267BB[CE]; OAX=rnneEkzoA7IACz4K; __utma=30057196.685584106.1290273703.1290273703.1290273703.1; __utmc=30057196; RMFD=011PJr8MO1021wJe; __utmb=30057196.3.9.1290273791381; opt=no-opt;

Response

HTTP/1.1 200 OK
Server: Sun-Java-System-Web-Server/7.0
ETag: W/"35d85d9f1c4ad11da0c6517f76dc9373"
X-runtime: 539
Content-Type: text/html; charset=utf-8
Proxy-agent: Sun-Java-System-Web-Server/7.0
Cache-Control: private, max-age=1
Date: Sat, 20 Nov 2010 18:21:53 GMT
Connection: close
Connection: Transfer-Encoding
Content-Length: 55766

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN"
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xmlns:og="http://opengraphprotocol.org/sc
...[SNIP]...
</script>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/main-min.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/ab-min.js" type="text/javascript"></script>
...[SNIP]...
<body class="markets">
<script src="http://www.googletagservices.com/tag/static/google_services.js" type="text/javascript"></script>
...[SNIP]...
<div class="component" >
<script type="text/javascript" src="http://cdn.taboolasyndication.com/libtrc/bloomberg/rbox.js?article">
</script>
...[SNIP]...
</script>
<script type="text/javascript" src="http://pagead2.googlesyndication.com/pagead/show_ads.js">
</script>
...[SNIP]...
</noscript>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/s_code_p.js" type="text/javascript"></script> <link href="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_style.css" media="screen" rel="stylesheet" type="text/css" /> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_engine_c.js" type="text/javascript"></script> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_conf_en-US_inline.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script type="text/javascript" src="http://js.revsci.net/gateway/gw.js?csid=K05539"></script>
...[SNIP]...

4.20. http://www.bloomberg.com/markets/mutual-funds/top-funds/us/  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.bloomberg.com
Path:   /markets/mutual-funds/top-funds/us/

Issue detail

The response dynamically includes the following scripts from other domains:

Request

GET /markets/mutual-funds/top-funds/us/ HTTP/1.1
Host: www.bloomberg.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmv=30057196.|3=opt=no-opt=1,; s_sess=%20s_ria%3Dflash%257CSilverlight%25204.0%3B%20s_campaign%3Dcof_2%3B%20s_cc%3Dtrue%3B%20ev1%3Dtv%253Ahome%3B%20s_sq%3D%3B; __utmz=30057196.1290273703.1.1.utmcsr=s0.2mdn.net|utmccn=(referral)|utmcmd=referral|utmcct=/1797755/Coffee_v1_300x250.swf; path_cookie=_news; BT=; oo_int_hit=1; oo_int_percent=0; rsi_segs=; s_vi=[CS]v1|267401DC851D2580-4000012F803267BB[CE]; OAX=rnneEkzoA7IACz4K; __utma=30057196.685584106.1290273703.1290273703.1290273703.1; __utmc=30057196; RMFD=011PJr8MO1021wJe; __utmb=30057196.3.9.1290273791381; opt=no-opt;

Response

HTTP/1.1 200 OK
Server: Sun-Java-System-Web-Server/7.0
ETag: W/"f28a34fda67ad8b520c0ba65e4acf387"
X-runtime: 11
Content-Type: text/html; charset=utf-8
Proxy-agent: Sun-Java-System-Web-Server/7.0
Cache-Control: private, max-age=46
Date: Sat, 20 Nov 2010 18:21:55 GMT
Connection: close
Connection: Transfer-Encoding
Content-Length: 44842

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN"
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xmlns:og="http://opengraphprotocol.org/sc
...[SNIP]...
</script>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/main-min.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/ab-min.js" type="text/javascript"></script>
...[SNIP]...
<body class="markets">
<script src="http://www.googletagservices.com/tag/static/google_services.js" type="text/javascript"></script>
...[SNIP]...
<div class="component" >
<script type="text/javascript" src="http://cdn.taboolasyndication.com/libtrc/bloomberg/rbox.js?article">
</script>
...[SNIP]...
</script>
<script type="text/javascript" src="http://pagead2.googlesyndication.com/pagead/show_ads.js">
</script>
...[SNIP]...
</noscript>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/s_code_p.js" type="text/javascript"></script> <link href="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_style.css" media="screen" rel="stylesheet" type="text/css" /> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_engine_c.js" type="text/javascript"></script> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_conf_en-US_inline.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script type="text/javascript" src="http://js.revsci.net/gateway/gw.js?csid=K05539"></script>
...[SNIP]...

4.21. http://www.bloomberg.com/markets/rates-bonds/government-bonds/us/  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.bloomberg.com
Path:   /markets/rates-bonds/government-bonds/us/

Issue detail

The response dynamically includes the following scripts from other domains:

Request

GET /markets/rates-bonds/government-bonds/us/ HTTP/1.1
Host: www.bloomberg.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmv=30057196.|3=opt=no-opt=1,; s_sess=%20s_ria%3Dflash%257CSilverlight%25204.0%3B%20s_campaign%3Dcof_2%3B%20s_cc%3Dtrue%3B%20ev1%3Dtv%253Ahome%3B%20s_sq%3D%3B; __utmz=30057196.1290273703.1.1.utmcsr=s0.2mdn.net|utmccn=(referral)|utmcmd=referral|utmcct=/1797755/Coffee_v1_300x250.swf; path_cookie=_news; BT=; oo_int_hit=1; oo_int_percent=0; rsi_segs=; s_vi=[CS]v1|267401DC851D2580-4000012F803267BB[CE]; OAX=rnneEkzoA7IACz4K; __utma=30057196.685584106.1290273703.1290273703.1290273703.1; __utmc=30057196; RMFD=011PJr8MO1021wJe; __utmb=30057196.3.9.1290273791381; opt=no-opt;

Response

HTTP/1.1 200 OK
Server: Sun-Java-System-Web-Server/7.0
ETag: W/"639e0aa5755d49941609d154351579d0"
X-runtime: 12
Content-Type: text/html; charset=utf-8
Proxy-agent: Sun-Java-System-Web-Server/7.0
Cache-Control: private, max-age=1
Date: Sat, 20 Nov 2010 18:21:53 GMT
Connection: close
Connection: Transfer-Encoding
Content-Length: 38920

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN"
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xmlns:og="http://opengraphprotocol.org/sc
...[SNIP]...
</script>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/main-min.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/ab-min.js" type="text/javascript"></script>
...[SNIP]...
<body class="markets">
<script src="http://www.googletagservices.com/tag/static/google_services.js" type="text/javascript"></script>
...[SNIP]...
<div class="component" >
<script type="text/javascript" src="http://cdn.taboolasyndication.com/libtrc/bloomberg/rbox.js?article">
</script>
...[SNIP]...
</script>
<script type="text/javascript" src="http://pagead2.googlesyndication.com/pagead/show_ads.js">
</script>
...[SNIP]...
</noscript>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/s_code_p.js" type="text/javascript"></script> <link href="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_style.css" media="screen" rel="stylesheet" type="text/css" /> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_engine_c.js" type="text/javascript"></script> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_conf_en-US_inline.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script type="text/javascript" src="http://js.revsci.net/gateway/gw.js?csid=K05539"></script>
...[SNIP]...

4.22. http://www.bloomberg.com/markets/stocks/  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.bloomberg.com
Path:   /markets/stocks/

Issue detail

The response dynamically includes the following scripts from other domains:

Request

GET /markets/stocks/ HTTP/1.1
Host: www.bloomberg.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmv=30057196.|3=opt=no-opt=1,; s_sess=%20s_ria%3Dflash%257CSilverlight%25204.0%3B%20s_campaign%3Dcof_2%3B%20s_cc%3Dtrue%3B%20ev1%3Dtv%253Ahome%3B%20s_sq%3D%3B; __utmz=30057196.1290273703.1.1.utmcsr=s0.2mdn.net|utmccn=(referral)|utmcmd=referral|utmcct=/1797755/Coffee_v1_300x250.swf; path_cookie=_news; BT=; oo_int_hit=1; oo_int_percent=0; rsi_segs=; s_vi=[CS]v1|267401DC851D2580-4000012F803267BB[CE]; OAX=rnneEkzoA7IACz4K; __utma=30057196.685584106.1290273703.1290273703.1290273703.1; __utmc=30057196; RMFD=011PJr8MO1021wJe; __utmb=30057196.3.9.1290273791381; opt=no-opt;

Response

HTTP/1.1 200 OK
Server: Sun-Java-System-Web-Server/7.0
ETag: W/"a9a33684bf41f09e469fd76f4157695f"
X-runtime: 11
Content-Type: text/html; charset=utf-8
Proxy-agent: Sun-Java-System-Web-Server/7.0
Cache-Control: private, max-age=16
Date: Sat, 20 Nov 2010 18:21:48 GMT
Connection: close
Connection: Transfer-Encoding
Content-Length: 34571

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN"
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xmlns:og="http://opengraphprotocol.org/sc
...[SNIP]...
</script>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/main-min.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/ab-min.js" type="text/javascript"></script>
...[SNIP]...
<body class="markets">
<script src="http://www.googletagservices.com/tag/static/google_services.js" type="text/javascript"></script>
...[SNIP]...
<div class="component" >
<script type="text/javascript" src="http://cdn.taboolasyndication.com/libtrc/bloomberg/rbox.js?article">
</script>
...[SNIP]...
</script>
<script type="text/javascript" src="http://pagead2.googlesyndication.com/pagead/show_ads.js">
</script>
...[SNIP]...
</noscript>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/s_code_p.js" type="text/javascript"></script> <link href="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_style.css" media="screen" rel="stylesheet" type="text/css" /> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_engine_c.js" type="text/javascript"></script> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_conf_en-US_inline.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script type="text/javascript" src="http://js.revsci.net/gateway/gw.js?csid=K05539"></script>
...[SNIP]...

4.23. http://www.bloomberg.com/markets/stocks/futures/  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.bloomberg.com
Path:   /markets/stocks/futures/

Issue detail

The response dynamically includes the following scripts from other domains:

Request

GET /markets/stocks/futures/ HTTP/1.1
Host: www.bloomberg.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmv=30057196.|3=opt=no-opt=1,; s_sess=%20s_ria%3Dflash%257CSilverlight%25204.0%3B%20s_campaign%3Dcof_2%3B%20s_cc%3Dtrue%3B%20ev1%3Dtv%253Ahome%3B%20s_sq%3D%3B; __utmz=30057196.1290273703.1.1.utmcsr=s0.2mdn.net|utmccn=(referral)|utmcmd=referral|utmcct=/1797755/Coffee_v1_300x250.swf; path_cookie=_news; BT=; oo_int_hit=1; oo_int_percent=0; rsi_segs=; s_vi=[CS]v1|267401DC851D2580-4000012F803267BB[CE]; OAX=rnneEkzoA7IACz4K; __utma=30057196.685584106.1290273703.1290273703.1290273703.1; __utmc=30057196; RMFD=011PJr8MO1021wJe; __utmb=30057196.3.9.1290273791381; opt=no-opt;

Response

HTTP/1.1 200 OK
Server: Sun-Java-System-Web-Server/7.0
ETag: W/"6e5b2c39a9fa98058d47d43bf64c178a"
X-runtime: 12
Content-Type: text/html; charset=utf-8
Proxy-agent: Sun-Java-System-Web-Server/7.0
Cache-Control: private, max-age=62
Date: Sat, 20 Nov 2010 18:21:48 GMT
Connection: close
Connection: Transfer-Encoding
Content-Length: 36209

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN"
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xmlns:og="http://opengraphprotocol.org/sc
...[SNIP]...
</script>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/main-min.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/ab-min.js" type="text/javascript"></script>
...[SNIP]...
<body class="markets">
<script src="http://www.googletagservices.com/tag/static/google_services.js" type="text/javascript"></script>
...[SNIP]...
<div class="component" >
<script type="text/javascript" src="http://cdn.taboolasyndication.com/libtrc/bloomberg/rbox.js?article">
</script>
...[SNIP]...
</script>
<script type="text/javascript" src="http://pagead2.googlesyndication.com/pagead/show_ads.js">
</script>
...[SNIP]...
</noscript>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/s_code_p.js" type="text/javascript"></script> <link href="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_style.css" media="screen" rel="stylesheet" type="text/css" /> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_engine_c.js" type="text/javascript"></script> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_conf_en-US_inline.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script type="text/javascript" src="http://js.revsci.net/gateway/gw.js?csid=K05539"></script>
...[SNIP]...

4.24. http://www.bloomberg.com/markets/stocks/world-indexes/americas/  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.bloomberg.com
Path:   /markets/stocks/world-indexes/americas/

Issue detail

The response dynamically includes the following scripts from other domains:

Request

GET /markets/stocks/world-indexes/americas/ HTTP/1.1
Host: www.bloomberg.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmv=30057196.|3=opt=no-opt=1,; s_sess=%20s_ria%3Dflash%257CSilverlight%25204.0%3B%20s_campaign%3Dcof_2%3B%20s_cc%3Dtrue%3B%20ev1%3Dtv%253Ahome%3B%20s_sq%3D%3B; __utmz=30057196.1290273703.1.1.utmcsr=s0.2mdn.net|utmccn=(referral)|utmcmd=referral|utmcct=/1797755/Coffee_v1_300x250.swf; path_cookie=_news; BT=; oo_int_hit=1; oo_int_percent=0; rsi_segs=; s_vi=[CS]v1|267401DC851D2580-4000012F803267BB[CE]; OAX=rnneEkzoA7IACz4K; __utma=30057196.685584106.1290273703.1290273703.1290273703.1; __utmc=30057196; RMFD=011PJr8MO1021wJe; __utmb=30057196.3.9.1290273791381; opt=no-opt;

Response

HTTP/1.1 200 OK
Server: Sun-Java-System-Web-Server/7.0
ETag: W/"0053896af2f37d43e1635698575350e9"
X-runtime: 11
Content-Type: text/html; charset=utf-8
Proxy-agent: Sun-Java-System-Web-Server/7.0
Cache-Control: private, max-age=15
Date: Sat, 20 Nov 2010 18:21:49 GMT
Connection: close
Connection: Transfer-Encoding
Content-Length: 61808

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN"
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xmlns:og="http://opengraphprotocol.org/sc
...[SNIP]...
</script>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/main-min.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/ab-min.js" type="text/javascript"></script>
...[SNIP]...
<body class="markets">
<script src="http://www.googletagservices.com/tag/static/google_services.js" type="text/javascript"></script>
...[SNIP]...
<div class="component" >
<script type="text/javascript" src="http://cdn.taboolasyndication.com/libtrc/bloomberg/rbox.js?article">
</script>
...[SNIP]...
</script>
<script type="text/javascript" src="http://pagead2.googlesyndication.com/pagead/show_ads.js">
</script>
...[SNIP]...
</noscript>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/s_code_p.js" type="text/javascript"></script> <link href="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_style.css" media="screen" rel="stylesheet" type="text/css" /> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_engine_c.js" type="text/javascript"></script> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_conf_en-US_inline.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script type="text/javascript" src="http://js.revsci.net/gateway/gw.js?csid=K05539"></script>
...[SNIP]...

4.25. http://www.bloomberg.com/markets/stocks/world-indexes/asia-pacific/  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.bloomberg.com
Path:   /markets/stocks/world-indexes/asia-pacific/

Issue detail

The response dynamically includes the following scripts from other domains:

Request

GET /markets/stocks/world-indexes/asia-pacific/ HTTP/1.1
Host: www.bloomberg.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmv=30057196.|3=opt=no-opt=1,; s_sess=%20s_ria%3Dflash%257CSilverlight%25204.0%3B%20s_campaign%3Dcof_2%3B%20s_cc%3Dtrue%3B%20ev1%3Dtv%253Ahome%3B%20s_sq%3D%3B; __utmz=30057196.1290273703.1.1.utmcsr=s0.2mdn.net|utmccn=(referral)|utmcmd=referral|utmcct=/1797755/Coffee_v1_300x250.swf; path_cookie=_news; BT=; oo_int_hit=1; oo_int_percent=0; rsi_segs=; s_vi=[CS]v1|267401DC851D2580-4000012F803267BB[CE]; OAX=rnneEkzoA7IACz4K; __utma=30057196.685584106.1290273703.1290273703.1290273703.1; __utmc=30057196; RMFD=011PJr8MO1021wJe; __utmb=30057196.3.9.1290273791381; opt=no-opt;

Response

HTTP/1.1 200 OK
Server: Sun-Java-System-Web-Server/7.0
ETag: W/"a2b4e2f29805a8eabeb32778a955e35c"
X-runtime: 662
Content-Type: text/html; charset=utf-8
Proxy-agent: Sun-Java-System-Web-Server/7.0
Cache-Control: private, max-age=41
Date: Sat, 20 Nov 2010 18:21:50 GMT
Connection: close
Connection: Transfer-Encoding
Content-Length: 62832

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN"
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xmlns:og="http://opengraphprotocol.org/sc
...[SNIP]...
</script>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/main-min.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/ab-min.js" type="text/javascript"></script>
...[SNIP]...
<body class="markets">
<script src="http://www.googletagservices.com/tag/static/google_services.js" type="text/javascript"></script>
...[SNIP]...
<div class="component" >
<script type="text/javascript" src="http://cdn.taboolasyndication.com/libtrc/bloomberg/rbox.js?article">
</script>
...[SNIP]...
</script>
<script type="text/javascript" src="http://pagead2.googlesyndication.com/pagead/show_ads.js">
</script>
...[SNIP]...
</noscript>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/s_code_p.js" type="text/javascript"></script> <link href="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_style.css" media="screen" rel="stylesheet" type="text/css" /> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_engine_c.js" type="text/javascript"></script> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_conf_en-US_inline.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script type="text/javascript" src="http://js.revsci.net/gateway/gw.js?csid=K05539"></script>
...[SNIP]...

4.26. http://www.bloomberg.com/markets/stocks/world-indexes/europe-africa-middle-east/  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.bloomberg.com
Path:   /markets/stocks/world-indexes/europe-africa-middle-east/

Issue detail

The response dynamically includes the following scripts from other domains:

Request

GET /markets/stocks/world-indexes/europe-africa-middle-east/ HTTP/1.1
Host: www.bloomberg.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmv=30057196.|3=opt=no-opt=1,; s_sess=%20s_ria%3Dflash%257CSilverlight%25204.0%3B%20s_campaign%3Dcof_2%3B%20s_cc%3Dtrue%3B%20ev1%3Dtv%253Ahome%3B%20s_sq%3D%3B; __utmz=30057196.1290273703.1.1.utmcsr=s0.2mdn.net|utmccn=(referral)|utmcmd=referral|utmcct=/1797755/Coffee_v1_300x250.swf; path_cookie=_news; BT=; oo_int_hit=1; oo_int_percent=0; rsi_segs=; s_vi=[CS]v1|267401DC851D2580-4000012F803267BB[CE]; OAX=rnneEkzoA7IACz4K; __utma=30057196.685584106.1290273703.1290273703.1290273703.1; __utmc=30057196; RMFD=011PJr8MO1021wJe; __utmb=30057196.3.9.1290273791381; opt=no-opt;

Response

HTTP/1.1 200 OK
Server: Sun-Java-System-Web-Server/7.0
ETag: W/"6e5bfd6ac5fc61816a1002534714df1c"
X-runtime: 13
Content-Type: text/html; charset=utf-8
Proxy-agent: Sun-Java-System-Web-Server/7.0
Cache-Control: private, max-age=4
Date: Sat, 20 Nov 2010 18:21:50 GMT
Connection: close
Connection: Transfer-Encoding
Content-Length: 104694

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN"
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xmlns:og="http://opengraphprotocol.org/sc
...[SNIP]...
</script>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/main-min.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/ab-min.js" type="text/javascript"></script>
...[SNIP]...
<body class="markets">
<script src="http://www.googletagservices.com/tag/static/google_services.js" type="text/javascript"></script>
...[SNIP]...
<div class="component" >
<script type="text/javascript" src="http://cdn.taboolasyndication.com/libtrc/bloomberg/rbox.js?article">
</script>
...[SNIP]...
</script>
<script type="text/javascript" src="http://pagead2.googlesyndication.com/pagead/show_ads.js">
</script>
...[SNIP]...
</noscript>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/s_code_p.js" type="text/javascript"></script> <link href="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_style.css" media="screen" rel="stylesheet" type="text/css" /> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_engine_c.js" type="text/javascript"></script> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_conf_en-US_inline.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script type="text/javascript" src="http://js.revsci.net/gateway/gw.js?csid=K05539"></script>
...[SNIP]...

4.27. http://www.bloomberg.com/mobile/  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.bloomberg.com
Path:   /mobile/

Issue detail

The response dynamically includes the following scripts from other domains:

Request

GET /mobile/ HTTP/1.1
Host: www.bloomberg.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmv=30057196.|3=opt=no-opt=1,; s_sess=%20s_ria%3Dflash%257CSilverlight%25204.0%3B%20s_campaign%3Dcof_2%3B%20s_cc%3Dtrue%3B%20ev1%3Dtv%253Ahome%3B%20s_sq%3D%3B; __utmz=30057196.1290273703.1.1.utmcsr=s0.2mdn.net|utmccn=(referral)|utmcmd=referral|utmcct=/1797755/Coffee_v1_300x250.swf; path_cookie=_news; BT=; oo_int_hit=1; oo_int_percent=0; rsi_segs=; s_vi=[CS]v1|267401DC851D2580-4000012F803267BB[CE]; OAX=rnneEkzoA7IACz4K; __utma=30057196.685584106.1290273703.1290273703.1290273703.1; __utmc=30057196; RMFD=011PJr8MO1021wJe; __utmb=30057196.3.9.1290273791381; opt=no-opt;

Response

HTTP/1.1 200 OK
Server: Sun-Java-System-Web-Server/7.0
Cache-Control: max-age=900
ETag: W/"5bdbf19fc9931aaebf8395c4cb7ed945"
X-runtime: 119
Content-Type: text/html; charset=utf-8
Cache-Control: max-age=120, private
Proxy-agent: Sun-Java-System-Web-Server/7.0
Date: Sat, 20 Nov 2010 18:22:11 GMT
Content-Length: 23326
Connection: close
Set-Cookie:

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN"
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xmlns:og="http://opengraphprotocol.org/sc
...[SNIP]...
</script>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/main-min.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/ab-min.js" type="text/javascript"></script>
...[SNIP]...
<body class="mobile ">
<script src="http://www.googletagservices.com/tag/static/google_services.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script type="text/javascript" src="http://pagead2.googlesyndication.com/pagead/show_ads.js">
</script>
...[SNIP]...
</noscript>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/s_code_p.js" type="text/javascript"></script> <link href="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_style.css" media="screen" rel="stylesheet" type="text/css" /> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_engine_c.js" type="text/javascript"></script> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_conf_en-US_inline.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script type="text/javascript" src="http://js.revsci.net/gateway/gw.js?csid=K05539"></script>
...[SNIP]...

4.28. http://www.bloomberg.com/muse/  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.bloomberg.com
Path:   /muse/

Issue detail

The response dynamically includes the following scripts from other domains:

Request

GET /muse/ HTTP/1.1
Host: www.bloomberg.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmv=30057196.|3=opt=no-opt=1,; s_sess=%20s_ria%3Dflash%257CSilverlight%25204.0%3B%20s_campaign%3Dcof_2%3B%20s_cc%3Dtrue%3B%20ev1%3Dtv%253Ahome%3B%20s_sq%3D%3B; __utmz=30057196.1290273703.1.1.utmcsr=s0.2mdn.net|utmccn=(referral)|utmcmd=referral|utmcct=/1797755/Coffee_v1_300x250.swf; path_cookie=_news; BT=; oo_int_hit=1; oo_int_percent=0; rsi_segs=; s_vi=[CS]v1|267401DC851D2580-4000012F803267BB[CE]; OAX=rnneEkzoA7IACz4K; __utma=30057196.685584106.1290273703.1290273703.1290273703.1; __utmc=30057196; RMFD=011PJr8MO1021wJe; __utmb=30057196.3.9.1290273791381; opt=no-opt;

Response

HTTP/1.1 200 OK
Server: Sun-Java-System-Web-Server/7.0
ETag: W/"285eff426694a6cc268974356360e50b"
X-runtime: 188
Content-Type: text/html; charset=utf-8
Proxy-agent: Sun-Java-System-Web-Server/7.0
Cache-Control: private, max-age=31
Date: Sat, 20 Nov 2010 18:21:44 GMT
Connection: close
Connection: Transfer-Encoding
Content-Length: 61239

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN"
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xmlns:og="http://opengraphprotocol.org/sc
...[SNIP]...
</script>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/main-min.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/ab-min.js" type="text/javascript"></script>
...[SNIP]...
<body class="news muse">
<script src="http://www.googletagservices.com/tag/static/google_services.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script type="text/javascript" src="http://pagead2.googlesyndication.com/pagead/show_ads.js">
</script>
...[SNIP]...
</noscript>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/s_code_p.js" type="text/javascript"></script> <link href="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_style.css" media="screen" rel="stylesheet" type="text/css" /> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_engine_c.js" type="text/javascript"></script> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_conf_en-US_inline.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script type="text/javascript" src="http://js.revsci.net/gateway/gw.js?csid=K05539"></script>
...[SNIP]...

4.29. http://www.bloomberg.com/navigation  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.bloomberg.com
Path:   /navigation

Issue detail

The response dynamically includes the following scripts from other domains:

Request

GET /navigation HTTP/1.1
Host: www.bloomberg.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmv=30057196.|3=opt=no-opt=1,; s_sess=%20s_ria%3Dflash%257CSilverlight%25204.0%3B%20s_campaign%3Dcof_2%3B%20s_cc%3Dtrue%3B%20ev1%3Dtv%253Ahome%3B%20s_sq%3D%3B; __utmz=30057196.1290273703.1.1.utmcsr=s0.2mdn.net|utmccn=(referral)|utmcmd=referral|utmcct=/1797755/Coffee_v1_300x250.swf; path_cookie=_news; BT=; oo_int_hit=1; oo_int_percent=0; rsi_segs=; s_vi=[CS]v1|267401DC851D2580-4000012F803267BB[CE]; OAX=rnneEkzoA7IACz4K; __utma=30057196.685584106.1290273703.1290273703.1290273703.1; __utmc=30057196; RMFD=011PJr8MO1021wJe; __utmb=30057196.3.9.1290273791381; opt=no-opt;

Response

HTTP/1.1 404 Not Found
Server: Sun-Java-System-Web-Server/7.0
Cache-Control: max-age=900
Content-Type: text/html
X-N: S
Date: Sat, 20 Nov 2010 18:22:23 GMT
Content-Length: 19583
Connection: close


<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN"
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head><meta http-equiv="Content-Type"
...[SNIP]...
<body class="">

<script src="http://www.googletagservices.com/tag/static/google_services.js" type="text/javascript"></script>
...[SNIP]...
<!-- Revenue Science -->

<script type="text/javascript" src="http://js.revsci.net/gateway/gw.js?csid=K05539"></script>
...[SNIP]...
<!-- Quantcast -->

<script src="http://edge.quantserve.com/quant.js" type="text/javascript">// </script>
...[SNIP]...

4.30. http://www.bloomberg.com/news/  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.bloomberg.com
Path:   /news/

Issue detail

The response dynamically includes the following scripts from other domains:

Request

GET /news/ HTTP/1.1
Host: www.bloomberg.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmv=30057196.|3=opt=no-opt=1,; s_sess=%20s_ria%3Dflash%257CSilverlight%25204.0%3B%20s_campaign%3Dcof_2%3B%20s_cc%3Dtrue%3B%20ev1%3Dtv%253Ahome%3B%20s_sq%3D%3B; __utmz=30057196.1290273703.1.1.utmcsr=s0.2mdn.net|utmccn=(referral)|utmcmd=referral|utmcct=/1797755/Coffee_v1_300x250.swf; path_cookie=_news; BT=; oo_int_hit=1; oo_int_percent=0; rsi_segs=; s_vi=[CS]v1|267401DC851D2580-4000012F803267BB[CE]; OAX=rnneEkzoA7IACz4K; __utma=30057196.685584106.1290273703.1290273703.1290273703.1; __utmc=30057196; RMFD=011PJr8MO1021wJe; __utmb=30057196.3.9.1290273791381; opt=no-opt;

Response

HTTP/1.1 200 OK
Server: Sun-Java-System-Web-Server/7.0
ETag: W/"40afbf5d8cfd078508ba1891a9af0ea1"
X-runtime: 11
Content-Type: text/html; charset=utf-8
Proxy-agent: Sun-Java-System-Web-Server/7.0
Cache-Control: private, max-age=58
Date: Sat, 20 Nov 2010 18:20:28 GMT
Connection: close
Connection: Transfer-Encoding
Content-Length: 78238

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN"
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xmlns:og="http://opengraphprotocol.org/sc
...[SNIP]...
</script>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/main-min.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/ab-min.js" type="text/javascript"></script>
...[SNIP]...
</script> <script src="http://www.googletagservices.com/tag/static/google_services.js" type="text/javascript"></script>
...[SNIP]...
</noscript>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/s_code_p.js" type="text/javascript"></script> <link href="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_style.css" media="screen" rel="stylesheet" type="text/css" /> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_engine_c.js" type="text/javascript"></script> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_conf_en-US_inline.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script type="text/javascript" src="http://js.revsci.net/gateway/gw.js?csid=K05539"></script>
...[SNIP]...

4.31. http://www.bloomberg.com/news/2010-11-07/india-s-deadly-diabetes-scourge-cuts-down-millions-rising-to-middle-class.html  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.bloomberg.com
Path:   /news/2010-11-07/india-s-deadly-diabetes-scourge-cuts-down-millions-rising-to-middle-class.html

Issue detail

The response dynamically includes the following scripts from other domains:

Request

GET /news/2010-11-07/india-s-deadly-diabetes-scourge-cuts-down-millions-rising-to-middle-class.html HTTP/1.1
Host: www.bloomberg.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmv=30057196.|3=opt=no-opt=1,; s_sess=%20s_ria%3Dflash%257CSilverlight%25204.0%3B%20s_campaign%3Dcof_2%3B%20s_cc%3Dtrue%3B%20ev1%3Dtv%253Ahome%3B%20s_sq%3D%3B; __utmz=30057196.1290273703.1.1.utmcsr=s0.2mdn.net|utmccn=(referral)|utmcmd=referral|utmcct=/1797755/Coffee_v1_300x250.swf; path_cookie=_news; BT=; oo_int_hit=1; oo_int_percent=0; rsi_segs=; s_vi=[CS]v1|267401DC851D2580-4000012F803267BB[CE]; OAX=rnneEkzoA7IACz4K; __utma=30057196.685584106.1290273703.1290273703.1290273703.1; __utmc=30057196; RMFD=011PJr8MO1021wJe; __utmb=30057196.3.9.1290273791381; opt=no-opt;

Response

HTTP/1.1 200 OK
Server: Sun-Java-System-Web-Server/7.0
ETag: W/"fa2ce831b9ab51a7e044bf861a8246fe"
X-runtime: 635
Content-Type: text/html; charset=utf-8
Proxy-agent: Sun-Java-System-Web-Server/7.0
Cache-Control: private, max-age=417
Date: Sat, 20 Nov 2010 18:21:37 GMT
Connection: close
Connection: Transfer-Encoding
Content-Length: 79808

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN"
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xmlns:og="http://opengraphprotocol.org/sc
...[SNIP]...
</script>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/main-min.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/ab-min.js" type="text/javascript"></script>
...[SNIP]...
<body class="news story">
<script src="http://www.googletagservices.com/tag/static/google_services.js" type="text/javascript"></script>
...[SNIP]...
</ul>


<script type="text/javascript" src="http://platform.twitter.com/widgets.js"></script>
...[SNIP]...
<div id="bloomberg-horizontal-rbox">
<script type="text/javascript" src="http://cdn.taboolasyndication.com/libtrc/bloomberg/rbox.js?article"></script>
...[SNIP]...
</script>
<script type="text/javascript" src="http://pagead2.googlesyndication.com/pagead/show_ads.js">
</script>
...[SNIP]...
</script>


<script type="text/javascript" src="http://static.newstogram.com/bloomberg-v3/js/histogram.js"></script>
...[SNIP]...
</noscript>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/s_code_p.js" type="text/javascript"></script> <link href="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_style.css" media="screen" rel="stylesheet" type="text/css" /> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_engine_c.js" type="text/javascript"></script> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_conf_en-US_inline.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script type="text/javascript" src="http://js.revsci.net/gateway/gw.js?csid=K05539"></script>
...[SNIP]...

4.32. http://www.bloomberg.com/news/2010-11-09/fidelity-s-bolton-defies-china-bears-with-27-new-fund-return.html  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.bloomberg.com
Path:   /news/2010-11-09/fidelity-s-bolton-defies-china-bears-with-27-new-fund-return.html

Issue detail

The response dynamically includes the following scripts from other domains:

Request

GET /news/2010-11-09/fidelity-s-bolton-defies-china-bears-with-27-new-fund-return.html HTTP/1.1
Host: www.bloomberg.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmv=30057196.|3=opt=no-opt=1,; s_sess=%20s_ria%3Dflash%257CSilverlight%25204.0%3B%20s_campaign%3Dcof_2%3B%20s_cc%3Dtrue%3B%20ev1%3Dtv%253Ahome%3B%20s_sq%3D%3B; __utmz=30057196.1290273703.1.1.utmcsr=s0.2mdn.net|utmccn=(referral)|utmcmd=referral|utmcct=/1797755/Coffee_v1_300x250.swf; path_cookie=_news; BT=; oo_int_hit=1; oo_int_percent=0; rsi_segs=; s_vi=[CS]v1|267401DC851D2580-4000012F803267BB[CE]; OAX=rnneEkzoA7IACz4K; __utma=30057196.685584106.1290273703.1290273703.1290273703.1; __utmc=30057196; RMFD=011PJr8MO1021wJe; __utmb=30057196.3.9.1290273791381; opt=no-opt;

Response

HTTP/1.1 200 OK
Server: Sun-Java-System-Web-Server/7.0
ETag: W/"3f4cb47fe0bf18350fc4ad8a4c20758a"
X-runtime: 1596
Content-Type: text/html; charset=utf-8
Proxy-agent: Sun-Java-System-Web-Server/7.0
Cache-Control: private, max-age=17
Date: Sat, 20 Nov 2010 18:21:35 GMT
Connection: close
Connection: Transfer-Encoding
Content-Length: 70362

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN"
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xmlns:og="http://opengraphprotocol.org/sc
...[SNIP]...
</script>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/main-min.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/ab-min.js" type="text/javascript"></script>
...[SNIP]...
<body class="news story">
<script src="http://www.googletagservices.com/tag/static/google_services.js" type="text/javascript"></script>
...[SNIP]...
</ul>


<script type="text/javascript" src="http://platform.twitter.com/widgets.js"></script>
...[SNIP]...
<div id="bloomberg-horizontal-rbox">
<script type="text/javascript" src="http://cdn.taboolasyndication.com/libtrc/bloomberg/rbox.js?article"></script>
...[SNIP]...
</div>


<script type="text/javascript" src="http://jlinks.industrybrains.com/jsct?sid=942&amp;ct=BLOOMBERG_PERSONAL_FINANCE&amp;tr=BLOOMBERG_PF_ARTICLES&amp;num=5&amp;layt=1&amp;fmt=simp"></script>
...[SNIP]...
</script>
<script type="text/javascript" src="http://pagead2.googlesyndication.com/pagead/show_ads.js">
</script>
...[SNIP]...
</script>


<script type="text/javascript" src="http://static.newstogram.com/bloomberg-v3/js/histogram.js"></script>
...[SNIP]...
</noscript>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/s_code_p.js" type="text/javascript"></script> <link href="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_style.css" media="screen" rel="stylesheet" type="text/css" /> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_engine_c.js" type="text/javascript"></script> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_conf_en-US_inline.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script type="text/javascript" src="http://js.revsci.net/gateway/gw.js?csid=K05539"></script>
...[SNIP]...

4.33. http://www.bloomberg.com/news/2010-11-11/merrill-banker-indicted-for-illegal-transfers-of-funds-says-he-s-scapegoat.html  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.bloomberg.com
Path:   /news/2010-11-11/merrill-banker-indicted-for-illegal-transfers-of-funds-says-he-s-scapegoat.html

Issue detail

The response dynamically includes the following scripts from other domains:

Request

GET /news/2010-11-11/merrill-banker-indicted-for-illegal-transfers-of-funds-says-he-s-scapegoat.html HTTP/1.1
Host: www.bloomberg.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmv=30057196.|3=opt=no-opt=1,; s_sess=%20s_ria%3Dflash%257CSilverlight%25204.0%3B%20s_campaign%3Dcof_2%3B%20s_cc%3Dtrue%3B%20ev1%3Dtv%253Ahome%3B%20s_sq%3D%3B; __utmz=30057196.1290273703.1.1.utmcsr=s0.2mdn.net|utmccn=(referral)|utmcmd=referral|utmcct=/1797755/Coffee_v1_300x250.swf; path_cookie=_news; BT=; oo_int_hit=1; oo_int_percent=0; rsi_segs=; s_vi=[CS]v1|267401DC851D2580-4000012F803267BB[CE]; OAX=rnneEkzoA7IACz4K; __utma=30057196.685584106.1290273703.1290273703.1290273703.1; __utmc=30057196; RMFD=011PJr8MO1021wJe; __utmb=30057196.3.9.1290273791381; opt=no-opt;

Response

HTTP/1.1 200 OK
Server: Sun-Java-System-Web-Server/7.0
ETag: W/"b4afe643bced6715ab9bd20fb661ff6a"
X-runtime: 1509
Content-Type: text/html; charset=utf-8
Proxy-agent: Sun-Java-System-Web-Server/7.0
Cache-Control: private, max-age=36
Date: Sat, 20 Nov 2010 18:21:35 GMT
Connection: close
Connection: Transfer-Encoding
Content-Length: 74143

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN"
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xmlns:og="http://opengraphprotocol.org/sc
...[SNIP]...
</script>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/main-min.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/ab-min.js" type="text/javascript"></script>
...[SNIP]...
<body class="news story">
<script src="http://www.googletagservices.com/tag/static/google_services.js" type="text/javascript"></script>
...[SNIP]...
</ul>


<script type="text/javascript" src="http://platform.twitter.com/widgets.js"></script>
...[SNIP]...
<div id="bloomberg-horizontal-rbox">
<script type="text/javascript" src="http://cdn.taboolasyndication.com/libtrc/bloomberg/rbox.js?article"></script>
...[SNIP]...
</script>
<script type="text/javascript" src="http://pagead2.googlesyndication.com/pagead/show_ads.js">
</script>
...[SNIP]...
</script>


<script type="text/javascript" src="http://static.newstogram.com/bloomberg-v3/js/histogram.js"></script>
...[SNIP]...
</noscript>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/s_code_p.js" type="text/javascript"></script> <link href="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_style.css" media="screen" rel="stylesheet" type="text/css" /> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_engine_c.js" type="text/javascript"></script> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_conf_en-US_inline.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script type="text/javascript" src="http://js.revsci.net/gateway/gw.js?csid=K05539"></script>
...[SNIP]...

4.34. http://www.bloomberg.com/news/2010-11-12/specialty-drugmaker-sinobiopharma-takes-on-big-pharma-in-china.html  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.bloomberg.com
Path:   /news/2010-11-12/specialty-drugmaker-sinobiopharma-takes-on-big-pharma-in-china.html

Issue detail

The response dynamically includes the following scripts from other domains:

Request

GET /news/2010-11-12/specialty-drugmaker-sinobiopharma-takes-on-big-pharma-in-china.html HTTP/1.1
Host: www.bloomberg.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmv=30057196.|3=opt=no-opt=1,; s_sess=%20s_ria%3Dflash%257CSilverlight%25204.0%3B%20s_campaign%3Dcof_2%3B%20s_cc%3Dtrue%3B%20ev1%3Dtv%253Ahome%3B%20s_sq%3D%3B; __utmz=30057196.1290273703.1.1.utmcsr=s0.2mdn.net|utmccn=(referral)|utmcmd=referral|utmcct=/1797755/Coffee_v1_300x250.swf; path_cookie=_news; BT=; oo_int_hit=1; oo_int_percent=0; rsi_segs=; s_vi=[CS]v1|267401DC851D2580-4000012F803267BB[CE]; OAX=rnneEkzoA7IACz4K; __utma=30057196.685584106.1290273703.1290273703.1290273703.1; __utmc=30057196; RMFD=011PJr8MO1021wJe; __utmb=30057196.3.9.1290273791381; opt=no-opt;

Response

HTTP/1.1 200 OK
Server: Sun-Java-System-Web-Server/7.0
ETag: W/"5acaa40bea37db8123777ca14480b9cc"
X-runtime: 609
Content-Type: text/html; charset=utf-8
Proxy-agent: Sun-Java-System-Web-Server/7.0
Cache-Control: private, max-age=55
Date: Sat, 20 Nov 2010 18:21:37 GMT
Connection: close
Connection: Transfer-Encoding
Content-Length: 56780

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN"
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xmlns:og="http://opengraphprotocol.org/sc
...[SNIP]...
</script>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/main-min.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/ab-min.js" type="text/javascript"></script>
...[SNIP]...
<body class="news story">
<script src="http://www.googletagservices.com/tag/static/google_services.js" type="text/javascript"></script>
...[SNIP]...
</ul>


<script type="text/javascript" src="http://platform.twitter.com/widgets.js"></script>
...[SNIP]...
<div id="bloomberg-horizontal-rbox">
<script type="text/javascript" src="http://cdn.taboolasyndication.com/libtrc/bloomberg/rbox.js?article"></script>
...[SNIP]...
</script>
<script type="text/javascript" src="http://pagead2.googlesyndication.com/pagead/show_ads.js">
</script>
...[SNIP]...
</script>


<script type="text/javascript" src="http://static.newstogram.com/bloomberg-v3/js/histogram.js"></script>
...[SNIP]...
</noscript>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/s_code_p.js" type="text/javascript"></script> <link href="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_style.css" media="screen" rel="stylesheet" type="text/css" /> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_engine_c.js" type="text/javascript"></script> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_conf_en-US_inline.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script type="text/javascript" src="http://js.revsci.net/gateway/gw.js?csid=K05539"></script>
...[SNIP]...

4.35. http://www.bloomberg.com/news/2010-11-16/senate-s-durbin-not-very-optimistic-bush-era-tax-cuts-will-be-extended.html  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.bloomberg.com
Path:   /news/2010-11-16/senate-s-durbin-not-very-optimistic-bush-era-tax-cuts-will-be-extended.html

Issue detail

The response dynamically includes the following scripts from other domains:

Request

GET /news/2010-11-16/senate-s-durbin-not-very-optimistic-bush-era-tax-cuts-will-be-extended.html HTTP/1.1
Host: www.bloomberg.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmv=30057196.|3=opt=no-opt=1,; s_sess=%20s_ria%3Dflash%257CSilverlight%25204.0%3B%20s_campaign%3Dcof_2%3B%20s_cc%3Dtrue%3B%20ev1%3Dtv%253Ahome%3B%20s_sq%3D%3B; __utmz=30057196.1290273703.1.1.utmcsr=s0.2mdn.net|utmccn=(referral)|utmcmd=referral|utmcct=/1797755/Coffee_v1_300x250.swf; path_cookie=_news; BT=; oo_int_hit=1; oo_int_percent=0; rsi_segs=; s_vi=[CS]v1|267401DC851D2580-4000012F803267BB[CE]; OAX=rnneEkzoA7IACz4K; __utma=30057196.685584106.1290273703.1290273703.1290273703.1; __utmc=30057196; RMFD=011PJr8MO1021wJe; __utmb=30057196.3.9.1290273791381; opt=no-opt;

Response

HTTP/1.1 200 OK
Server: Sun-Java-System-Web-Server/7.0
ETag: W/"4cd9d2193a72f4377326e028a35bff15"
X-runtime: 617
Content-Type: text/html; charset=utf-8
Proxy-agent: Sun-Java-System-Web-Server/7.0
Cache-Control: private, max-age=1
Date: Sat, 20 Nov 2010 18:21:34 GMT
Connection: close
Connection: Transfer-Encoding
Content-Length: 59345

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN"
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xmlns:og="http://opengraphprotocol.org/sc
...[SNIP]...
</script>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/main-min.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/ab-min.js" type="text/javascript"></script>
...[SNIP]...
<body class="news story">
<script src="http://www.googletagservices.com/tag/static/google_services.js" type="text/javascript"></script>
...[SNIP]...
</ul>


<script type="text/javascript" src="http://platform.twitter.com/widgets.js"></script>
...[SNIP]...
<div id="bloomberg-horizontal-rbox">
<script type="text/javascript" src="http://cdn.taboolasyndication.com/libtrc/bloomberg/rbox.js?article"></script>
...[SNIP]...
</div>


<script type="text/javascript" src="http://jlinks.industrybrains.com/jsct?sid=942&amp;ct=BLOOMBERG_PERSONAL_FINANCE&amp;tr=BLOOMBERG_PF_ARTICLES&amp;num=5&amp;layt=1&amp;fmt=simp"></script>
...[SNIP]...
</script>
<script type="text/javascript" src="http://pagead2.googlesyndication.com/pagead/show_ads.js">
</script>
...[SNIP]...
</script>


<script type="text/javascript" src="http://static.newstogram.com/bloomberg-v3/js/histogram.js"></script>
...[SNIP]...
</noscript>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/s_code_p.js" type="text/javascript"></script> <link href="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_style.css" media="screen" rel="stylesheet" type="text/css" /> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_engine_c.js" type="text/javascript"></script> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_conf_en-US_inline.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script type="text/javascript" src="http://js.revsci.net/gateway/gw.js?csid=K05539"></script>
...[SNIP]...

4.36. http://www.bloomberg.com/news/2010-11-17/home-ownership-gets-harder-for-americans-as-lenders-restrict-fha-mortgages.html  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.bloomberg.com
Path:   /news/2010-11-17/home-ownership-gets-harder-for-americans-as-lenders-restrict-fha-mortgages.html

Issue detail

The response dynamically includes the following scripts from other domains:

Request

GET /news/2010-11-17/home-ownership-gets-harder-for-americans-as-lenders-restrict-fha-mortgages.html HTTP/1.1
Host: www.bloomberg.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmv=30057196.|3=opt=no-opt=1,; s_sess=%20s_ria%3Dflash%257CSilverlight%25204.0%3B%20s_campaign%3Dcof_2%3B%20s_cc%3Dtrue%3B%20ev1%3Dtv%253Ahome%3B%20s_sq%3D%3B; __utmz=30057196.1290273703.1.1.utmcsr=s0.2mdn.net|utmccn=(referral)|utmcmd=referral|utmcct=/1797755/Coffee_v1_300x250.swf; path_cookie=_news; BT=; oo_int_hit=1; oo_int_percent=0; rsi_segs=; s_vi=[CS]v1|267401DC851D2580-4000012F803267BB[CE]; OAX=rnneEkzoA7IACz4K; __utma=30057196.685584106.1290273703.1290273703.1290273703.1; __utmc=30057196; RMFD=011PJr8MO1021wJe; __utmb=30057196.3.9.1290273791381; opt=no-opt;

Response

HTTP/1.1 200 OK
Server: Sun-Java-System-Web-Server/7.0
ETag: W/"7beefbafe7ab7c20331e0a4e72d73fd7"
X-runtime: 21
Content-Type: text/html; charset=utf-8
Proxy-agent: Sun-Java-System-Web-Server/7.0
Cache-Control: private, max-age=16
Date: Sat, 20 Nov 2010 18:21:31 GMT
Connection: close
Connection: Transfer-Encoding
Content-Length: 63732

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN"
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xmlns:og="http://opengraphprotocol.org/sc
...[SNIP]...
</script>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/main-min.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/ab-min.js" type="text/javascript"></script>
...[SNIP]...
<body class="news story">
<script src="http://www.googletagservices.com/tag/static/google_services.js" type="text/javascript"></script>
...[SNIP]...
</ul>


<script type="text/javascript" src="http://platform.twitter.com/widgets.js"></script>
...[SNIP]...
<div id="bloomberg-horizontal-rbox">
<script type="text/javascript" src="http://cdn.taboolasyndication.com/libtrc/bloomberg/rbox.js?article"></script>
...[SNIP]...
</div>


<script type="text/javascript" src="http://jlinks.industrybrains.com/jsct?sid=942&amp;ct=BLOOMBERG_PERSONAL_FINANCE&amp;tr=BLOOMBERG_PF_ARTICLES&amp;num=5&amp;layt=1&amp;fmt=simp"></script>
...[SNIP]...
</script>
<script type="text/javascript" src="http://pagead2.googlesyndication.com/pagead/show_ads.js">
</script>
...[SNIP]...
</script>


<script type="text/javascript" src="http://static.newstogram.com/bloomberg-v3/js/histogram.js"></script>
...[SNIP]...
</noscript>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/s_code_p.js" type="text/javascript"></script> <link href="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_style.css" media="screen" rel="stylesheet" type="text/css" /> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_engine_c.js" type="text/javascript"></script> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_conf_en-US_inline.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script type="text/javascript" src="http://js.revsci.net/gateway/gw.js?csid=K05539"></script>
...[SNIP]...

4.37. http://www.bloomberg.com/news/2010-11-17/merck-drug-improves-cholesterol-without-safety-risk-of-pfizer-s-product.html  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.bloomberg.com
Path:   /news/2010-11-17/merck-drug-improves-cholesterol-without-safety-risk-of-pfizer-s-product.html

Issue detail

The response dynamically includes the following scripts from other domains:

Request

GET /news/2010-11-17/merck-drug-improves-cholesterol-without-safety-risk-of-pfizer-s-product.html HTTP/1.1
Host: www.bloomberg.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmv=30057196.|3=opt=no-opt=1,; s_sess=%20s_ria%3Dflash%257CSilverlight%25204.0%3B%20s_campaign%3Dcof_2%3B%20s_cc%3Dtrue%3B%20ev1%3Dtv%253Ahome%3B%20s_sq%3D%3B; __utmz=30057196.1290273703.1.1.utmcsr=s0.2mdn.net|utmccn=(referral)|utmcmd=referral|utmcct=/1797755/Coffee_v1_300x250.swf; path_cookie=_news; BT=; oo_int_hit=1; oo_int_percent=0; rsi_segs=; s_vi=[CS]v1|267401DC851D2580-4000012F803267BB[CE]; OAX=rnneEkzoA7IACz4K; __utma=30057196.685584106.1290273703.1290273703.1290273703.1; __utmc=30057196; RMFD=011PJr8MO1021wJe; __utmb=30057196.3.9.1290273791381; opt=no-opt;

Response

HTTP/1.1 200 OK
Server: Sun-Java-System-Web-Server/7.0
ETag: W/"a8b7f0443b3b31a27d860148b0c46032"
X-runtime: 27
Content-Type: text/html; charset=utf-8
Proxy-agent: Sun-Java-System-Web-Server/7.0
Cache-Control: private, max-age=2
Date: Sat, 20 Nov 2010 18:21:32 GMT
Connection: close
Connection: Transfer-Encoding
Content-Length: 53718

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN"
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xmlns:og="http://opengraphprotocol.org/sc
...[SNIP]...
</script>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/main-min.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/ab-min.js" type="text/javascript"></script>
...[SNIP]...
<body class="news story">
<script src="http://www.googletagservices.com/tag/static/google_services.js" type="text/javascript"></script>
...[SNIP]...
</ul>


<script type="text/javascript" src="http://platform.twitter.com/widgets.js"></script>
...[SNIP]...
<div id="bloomberg-horizontal-rbox">
<script type="text/javascript" src="http://cdn.taboolasyndication.com/libtrc/bloomberg/rbox.js?article"></script>
...[SNIP]...
</script>
<script type="text/javascript" src="http://pagead2.googlesyndication.com/pagead/show_ads.js">
</script>
...[SNIP]...
</script>


<script type="text/javascript" src="http://static.newstogram.com/bloomberg-v3/js/histogram.js"></script>
...[SNIP]...
</noscript>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/s_code_p.js" type="text/javascript"></script> <link href="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_style.css" media="screen" rel="stylesheet" type="text/css" /> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_engine_c.js" type="text/javascript"></script> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_conf_en-US_inline.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script type="text/javascript" src="http://js.revsci.net/gateway/gw.js?csid=K05539"></script>
...[SNIP]...

4.38. http://www.bloomberg.com/news/2010-11-17/panasonic-to-boost-hiring-at-overseas-operations-next-year.html  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.bloomberg.com
Path:   /news/2010-11-17/panasonic-to-boost-hiring-at-overseas-operations-next-year.html

Issue detail

The response dynamically includes the following scripts from other domains:

Request

GET /news/2010-11-17/panasonic-to-boost-hiring-at-overseas-operations-next-year.html HTTP/1.1
Host: www.bloomberg.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmv=30057196.|3=opt=no-opt=1,; s_sess=%20s_ria%3Dflash%257CSilverlight%25204.0%3B%20s_campaign%3Dcof_2%3B%20s_cc%3Dtrue%3B%20ev1%3Dtv%253Ahome%3B%20s_sq%3D%3B; __utmz=30057196.1290273703.1.1.utmcsr=s0.2mdn.net|utmccn=(referral)|utmcmd=referral|utmcct=/1797755/Coffee_v1_300x250.swf; path_cookie=_news; BT=; oo_int_hit=1; oo_int_percent=0; rsi_segs=; s_vi=[CS]v1|267401DC851D2580-4000012F803267BB[CE]; OAX=rnneEkzoA7IACz4K; __utma=30057196.685584106.1290273703.1290273703.1290273703.1; __utmc=30057196; RMFD=011PJr8MO1021wJe; __utmb=30057196.3.9.1290273791381; opt=no-opt;

Response

HTTP/1.1 200 OK
Server: Sun-Java-System-Web-Server/7.0
ETag: W/"57588a17cc713c75e1cd76895bf5bbf3"
X-runtime: 431
Content-Type: text/html; charset=utf-8
Proxy-agent: Sun-Java-System-Web-Server/7.0
Cache-Control: private, max-age=57
Date: Sat, 20 Nov 2010 18:21:33 GMT
Connection: close
Connection: Transfer-Encoding
Content-Length: 43895

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN"
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xmlns:og="http://opengraphprotocol.org/sc
...[SNIP]...
</script>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/main-min.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/ab-min.js" type="text/javascript"></script>
...[SNIP]...
<body class="news story">
<script src="http://www.googletagservices.com/tag/static/google_services.js" type="text/javascript"></script>
...[SNIP]...
</ul>


<script type="text/javascript" src="http://platform.twitter.com/widgets.js"></script>
...[SNIP]...
<div id="bloomberg-horizontal-rbox">
<script type="text/javascript" src="http://cdn.taboolasyndication.com/libtrc/bloomberg/rbox.js?article"></script>
...[SNIP]...
</script>
<script type="text/javascript" src="http://pagead2.googlesyndication.com/pagead/show_ads.js">
</script>
...[SNIP]...
</script>


<script type="text/javascript" src="http://static.newstogram.com/bloomberg-v3/js/histogram.js"></script>
...[SNIP]...
</noscript>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/s_code_p.js" type="text/javascript"></script> <link href="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_style.css" media="screen" rel="stylesheet" type="text/css" /> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_engine_c.js" type="text/javascript"></script> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_conf_en-US_inline.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script type="text/javascript" src="http://js.revsci.net/gateway/gw.js?csid=K05539"></script>
...[SNIP]...

4.39. http://www.bloomberg.com/news/2010-11-18/beachbody-thinking-beyond-the-infomercial.html  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.bloomberg.com
Path:   /news/2010-11-18/beachbody-thinking-beyond-the-infomercial.html

Issue detail

The response dynamically includes the following scripts from other domains:

Request

GET /news/2010-11-18/beachbody-thinking-beyond-the-infomercial.html HTTP/1.1
Host: www.bloomberg.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmv=30057196.|3=opt=no-opt=1,; s_sess=%20s_ria%3Dflash%257CSilverlight%25204.0%3B%20s_campaign%3Dcof_2%3B%20s_cc%3Dtrue%3B%20ev1%3Dtv%253Ahome%3B%20s_sq%3D%3B; __utmz=30057196.1290273703.1.1.utmcsr=s0.2mdn.net|utmccn=(referral)|utmcmd=referral|utmcct=/1797755/Coffee_v1_300x250.swf; path_cookie=_news; BT=; oo_int_hit=1; oo_int_percent=0; rsi_segs=; s_vi=[CS]v1|267401DC851D2580-4000012F803267BB[CE]; OAX=rnneEkzoA7IACz4K; __utma=30057196.685584106.1290273703.1290273703.1290273703.1; __utmc=30057196; RMFD=011PJr8MO1021wJe; __utmb=30057196.3.9.1290273791381; opt=no-opt;

Response

HTTP/1.1 200 OK
Server: Sun-Java-System-Web-Server/7.0
ETag: W/"8c2c265a3373222beae2db52a1e22d75"
X-runtime: 20
Content-Type: text/html; charset=utf-8
Proxy-agent: Sun-Java-System-Web-Server/7.0
Cache-Control: private, max-age=40
Date: Sat, 20 Nov 2010 18:21:25 GMT
Connection: close
Connection: Transfer-Encoding
Content-Length: 50307

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN"
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xmlns:og="http://opengraphprotocol.org/sc
...[SNIP]...
</script>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/main-min.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/ab-min.js" type="text/javascript"></script>
...[SNIP]...
<body class="news story">
<script src="http://www.googletagservices.com/tag/static/google_services.js" type="text/javascript"></script>
...[SNIP]...
</ul>


<script type="text/javascript" src="http://platform.twitter.com/widgets.js"></script>
...[SNIP]...
<div id="bloomberg-horizontal-rbox">
<script type="text/javascript" src="http://cdn.taboolasyndication.com/libtrc/bloomberg/rbox.js?article"></script>
...[SNIP]...
</script>
<script type="text/javascript" src="http://pagead2.googlesyndication.com/pagead/show_ads.js">
</script>
...[SNIP]...
</script>


<script type="text/javascript" src="http://static.newstogram.com/bloomberg-v3/js/histogram.js"></script>
...[SNIP]...
</noscript>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/s_code_p.js" type="text/javascript"></script> <link href="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_style.css" media="screen" rel="stylesheet" type="text/css" /> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_engine_c.js" type="text/javascript"></script> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_conf_en-US_inline.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script type="text/javascript" src="http://js.revsci.net/gateway/gw.js?csid=K05539"></script>
...[SNIP]...

4.40. http://www.bloomberg.com/news/2010-11-18/clinton-to-offer-blueprint-for-more-staff-conflict-prevention.html  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.bloomberg.com
Path:   /news/2010-11-18/clinton-to-offer-blueprint-for-more-staff-conflict-prevention.html

Issue detail

The response dynamically includes the following scripts from other domains:

Request

GET /news/2010-11-18/clinton-to-offer-blueprint-for-more-staff-conflict-prevention.html HTTP/1.1
Host: www.bloomberg.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmv=30057196.|3=opt=no-opt=1,; s_sess=%20s_ria%3Dflash%257CSilverlight%25204.0%3B%20s_campaign%3Dcof_2%3B%20s_cc%3Dtrue%3B%20ev1%3Dtv%253Ahome%3B%20s_sq%3D%3B; __utmz=30057196.1290273703.1.1.utmcsr=s0.2mdn.net|utmccn=(referral)|utmcmd=referral|utmcct=/1797755/Coffee_v1_300x250.swf; path_cookie=_news; BT=; oo_int_hit=1; oo_int_percent=0; rsi_segs=; s_vi=[CS]v1|267401DC851D2580-4000012F803267BB[CE]; OAX=rnneEkzoA7IACz4K; __utma=30057196.685584106.1290273703.1290273703.1290273703.1; __utmc=30057196; RMFD=011PJr8MO1021wJe; __utmb=30057196.3.9.1290273791381; opt=no-opt;

Response

HTTP/1.1 200 OK
Server: Sun-Java-System-Web-Server/7.0
ETag: W/"c6190003f57ab28966e9b046bbae5547"
X-runtime: 1456
Content-Type: text/html; charset=utf-8
Proxy-agent: Sun-Java-System-Web-Server/7.0
Cache-Control: private, max-age=19
Date: Sat, 20 Nov 2010 18:21:24 GMT
Connection: close
Connection: Transfer-Encoding
Content-Length: 50486

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN"
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xmlns:og="http://opengraphprotocol.org/sc
...[SNIP]...
</script>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/main-min.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/ab-min.js" type="text/javascript"></script>
...[SNIP]...
<body class="news story">
<script src="http://www.googletagservices.com/tag/static/google_services.js" type="text/javascript"></script>
...[SNIP]...
</ul>


<script type="text/javascript" src="http://platform.twitter.com/widgets.js"></script>
...[SNIP]...
<div id="bloomberg-horizontal-rbox">
<script type="text/javascript" src="http://cdn.taboolasyndication.com/libtrc/bloomberg/rbox.js?article"></script>
...[SNIP]...
</script>
<script type="text/javascript" src="http://pagead2.googlesyndication.com/pagead/show_ads.js">
</script>
...[SNIP]...
</script>


<script type="text/javascript" src="http://static.newstogram.com/bloomberg-v3/js/histogram.js"></script>
...[SNIP]...
</noscript>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/s_code_p.js" type="text/javascript"></script> <link href="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_style.css" media="screen" rel="stylesheet" type="text/css" /> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_engine_c.js" type="text/javascript"></script> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_conf_en-US_inline.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script type="text/javascript" src="http://js.revsci.net/gateway/gw.js?csid=K05539"></script>
...[SNIP]...

4.41. http://www.bloomberg.com/news/2010-11-18/could-bowling-strike-it-big-in-times-square-.html  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.bloomberg.com
Path:   /news/2010-11-18/could-bowling-strike-it-big-in-times-square-.html

Issue detail

The response dynamically includes the following scripts from other domains:

Request

GET /news/2010-11-18/could-bowling-strike-it-big-in-times-square-.html HTTP/1.1
Host: www.bloomberg.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmv=30057196.|3=opt=no-opt=1,; s_sess=%20s_ria%3Dflash%257CSilverlight%25204.0%3B%20s_campaign%3Dcof_2%3B%20s_cc%3Dtrue%3B%20ev1%3Dtv%253Ahome%3B%20s_sq%3D%3B; __utmz=30057196.1290273703.1.1.utmcsr=s0.2mdn.net|utmccn=(referral)|utmcmd=referral|utmcct=/1797755/Coffee_v1_300x250.swf; path_cookie=_news; BT=; oo_int_hit=1; oo_int_percent=0; rsi_segs=; s_vi=[CS]v1|267401DC851D2580-4000012F803267BB[CE]; OAX=rnneEkzoA7IACz4K; __utma=30057196.685584106.1290273703.1290273703.1290273703.1; __utmc=30057196; RMFD=011PJr8MO1021wJe; __utmb=30057196.3.9.1290273791381; opt=no-opt;

Response

HTTP/1.1 200 OK
Server: Sun-Java-System-Web-Server/7.0
ETag: W/"abefe3ceeba91a0178739b07d18c2aa4"
X-runtime: 507
Content-Type: text/html; charset=utf-8
Proxy-agent: Sun-Java-System-Web-Server/7.0
Cache-Control: private, max-age=20
Date: Sat, 20 Nov 2010 18:21:25 GMT
Connection: close
Connection: Transfer-Encoding
Content-Length: 50983

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN"
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xmlns:og="http://opengraphprotocol.org/sc
...[SNIP]...
</script>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/main-min.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/ab-min.js" type="text/javascript"></script>
...[SNIP]...
<body class="news story">
<script src="http://www.googletagservices.com/tag/static/google_services.js" type="text/javascript"></script>
...[SNIP]...
</ul>


<script type="text/javascript" src="http://platform.twitter.com/widgets.js"></script>
...[SNIP]...
<div id="bloomberg-horizontal-rbox">
<script type="text/javascript" src="http://cdn.taboolasyndication.com/libtrc/bloomberg/rbox.js?article"></script>
...[SNIP]...
</script>
<script type="text/javascript" src="http://pagead2.googlesyndication.com/pagead/show_ads.js">
</script>
...[SNIP]...
</script>


<script type="text/javascript" src="http://static.newstogram.com/bloomberg-v3/js/histogram.js"></script>
...[SNIP]...
</noscript>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/s_code_p.js" type="text/javascript"></script> <link href="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_style.css" media="screen" rel="stylesheet" type="text/css" /> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_engine_c.js" type="text/javascript"></script> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_conf_en-US_inline.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script type="text/javascript" src="http://js.revsci.net/gateway/gw.js?csid=K05539"></script>
...[SNIP]...

4.42. http://www.bloomberg.com/news/2010-11-18/fidelity-s-junk-bond-king-notkin-prefers-cheap-stocks-as-debt-rally-dies.html  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.bloomberg.com
Path:   /news/2010-11-18/fidelity-s-junk-bond-king-notkin-prefers-cheap-stocks-as-debt-rally-dies.html

Issue detail

The response dynamically includes the following scripts from other domains:

Request

GET /news/2010-11-18/fidelity-s-junk-bond-king-notkin-prefers-cheap-stocks-as-debt-rally-dies.html HTTP/1.1
Host: www.bloomberg.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmv=30057196.|3=opt=no-opt=1,; s_sess=%20s_ria%3Dflash%257CSilverlight%25204.0%3B%20s_campaign%3Dcof_2%3B%20s_cc%3Dtrue%3B%20ev1%3Dtv%253Ahome%3B%20s_sq%3D%3B; __utmz=30057196.1290273703.1.1.utmcsr=s0.2mdn.net|utmccn=(referral)|utmcmd=referral|utmcct=/1797755/Coffee_v1_300x250.swf; path_cookie=_news; BT=; oo_int_hit=1; oo_int_percent=0; rsi_segs=; s_vi=[CS]v1|267401DC851D2580-4000012F803267BB[CE]; OAX=rnneEkzoA7IACz4K; __utma=30057196.685584106.1290273703.1290273703.1290273703.1; __utmc=30057196; RMFD=011PJr8MO1021wJe; __utmb=30057196.3.9.1290273791381; opt=no-opt;

Response

HTTP/1.1 200 OK
Server: Sun-Java-System-Web-Server/7.0
ETag: W/"ed78029d6389317482895c309ea39ec5"
X-runtime: 546
Content-Type: text/html; charset=utf-8
Proxy-agent: Sun-Java-System-Web-Server/7.0
Cache-Control: private, max-age=19
Date: Sat, 20 Nov 2010 18:21:25 GMT
Connection: close
Connection: Transfer-Encoding
Content-Length: 58128

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN"
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xmlns:og="http://opengraphprotocol.org/sc
...[SNIP]...
</script>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/main-min.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/ab-min.js" type="text/javascript"></script>
...[SNIP]...
<body class="news story">
<script src="http://www.googletagservices.com/tag/static/google_services.js" type="text/javascript"></script>
...[SNIP]...
</ul>


<script type="text/javascript" src="http://platform.twitter.com/widgets.js"></script>
...[SNIP]...
<div id="bloomberg-horizontal-rbox">
<script type="text/javascript" src="http://cdn.taboolasyndication.com/libtrc/bloomberg/rbox.js?article"></script>
...[SNIP]...
</div>


<script type="text/javascript" src="http://jlinks.industrybrains.com/jsct?sid=942&amp;ct=BLOOMBERG_PERSONAL_FINANCE&amp;tr=BLOOMBERG_PF_ARTICLES&amp;num=5&amp;layt=1&amp;fmt=simp"></script>
...[SNIP]...
</script>
<script type="text/javascript" src="http://pagead2.googlesyndication.com/pagead/show_ads.js">
</script>
...[SNIP]...
</script>


<script type="text/javascript" src="http://static.newstogram.com/bloomberg-v3/js/histogram.js"></script>
...[SNIP]...
</noscript>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/s_code_p.js" type="text/javascript"></script> <link href="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_style.css" media="screen" rel="stylesheet" type="text/css" /> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_engine_c.js" type="text/javascript"></script> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_conf_en-US_inline.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script type="text/javascript" src="http://js.revsci.net/gateway/gw.js?csid=K05539"></script>
...[SNIP]...

4.43. http://www.bloomberg.com/news/2010-11-18/mark-to-make-believe-perfumes-rotten-loans-commentary-by-jonathan-weil.html  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.bloomberg.com
Path:   /news/2010-11-18/mark-to-make-believe-perfumes-rotten-loans-commentary-by-jonathan-weil.html

Issue detail

The response dynamically includes the following scripts from other domains:

Request

GET /news/2010-11-18/mark-to-make-believe-perfumes-rotten-loans-commentary-by-jonathan-weil.html HTTP/1.1
Host: www.bloomberg.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmv=30057196.|3=opt=no-opt=1,; s_sess=%20s_ria%3Dflash%257CSilverlight%25204.0%3B%20s_campaign%3Dcof_2%3B%20s_cc%3Dtrue%3B%20ev1%3Dtv%253Ahome%3B%20s_sq%3D%3B; __utmz=30057196.1290273703.1.1.utmcsr=s0.2mdn.net|utmccn=(referral)|utmcmd=referral|utmcct=/1797755/Coffee_v1_300x250.swf; path_cookie=_news; BT=; oo_int_hit=1; oo_int_percent=0; rsi_segs=; s_vi=[CS]v1|267401DC851D2580-4000012F803267BB[CE]; OAX=rnneEkzoA7IACz4K; __utma=30057196.685584106.1290273703.1290273703.1290273703.1; __utmc=30057196; RMFD=011PJr8MO1021wJe; __utmb=30057196.3.9.1290273791381; opt=no-opt;

Response

HTTP/1.1 200 OK
Server: Sun-Java-System-Web-Server/7.0
ETag: W/"b34501be1ba785dcbda069b5c784075f"
X-runtime: 1461
Content-Type: text/html; charset=utf-8
Proxy-agent: Sun-Java-System-Web-Server/7.0
Cache-Control: private, max-age=27
Date: Sat, 20 Nov 2010 18:21:24 GMT
Connection: close
Connection: Transfer-Encoding
Content-Length: 55361

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN"
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xmlns:og="http://opengraphprotocol.org/sc
...[SNIP]...
</script>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/main-min.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/ab-min.js" type="text/javascript"></script>
...[SNIP]...
<body class="news story">
<script src="http://www.googletagservices.com/tag/static/google_services.js" type="text/javascript"></script>
...[SNIP]...
</ul>


<script type="text/javascript" src="http://platform.twitter.com/widgets.js"></script>
...[SNIP]...
<div id="bloomberg-horizontal-rbox">
<script type="text/javascript" src="http://cdn.taboolasyndication.com/libtrc/bloomberg/rbox.js?article"></script>
...[SNIP]...
</script>
<script type="text/javascript" src="http://pagead2.googlesyndication.com/pagead/show_ads.js">
</script>
...[SNIP]...
</script>


<script type="text/javascript" src="http://static.newstogram.com/bloomberg-v3/js/histogram.js"></script>
...[SNIP]...
</noscript>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/s_code_p.js" type="text/javascript"></script> <link href="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_style.css" media="screen" rel="stylesheet" type="text/css" /> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_engine_c.js" type="text/javascript"></script> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_conf_en-US_inline.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script type="text/javascript" src="http://js.revsci.net/gateway/gw.js?csid=K05539"></script>
...[SNIP]...

4.44. http://www.bloomberg.com/news/2010-11-18/only-apple-haters-can-love-samsung-galaxy-tab-rich-jaroslovsky.html  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.bloomberg.com
Path:   /news/2010-11-18/only-apple-haters-can-love-samsung-galaxy-tab-rich-jaroslovsky.html

Issue detail

The response dynamically includes the following scripts from other domains:

Request

GET /news/2010-11-18/only-apple-haters-can-love-samsung-galaxy-tab-rich-jaroslovsky.html HTTP/1.1
Host: www.bloomberg.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmv=30057196.|3=opt=no-opt=1,; s_sess=%20s_ria%3Dflash%257CSilverlight%25204.0%3B%20s_campaign%3Dcof_2%3B%20s_cc%3Dtrue%3B%20ev1%3Dtv%253Ahome%3B%20s_sq%3D%3B; __utmz=30057196.1290273703.1.1.utmcsr=s0.2mdn.net|utmccn=(referral)|utmcmd=referral|utmcct=/1797755/Coffee_v1_300x250.swf; path_cookie=_news; BT=; oo_int_hit=1; oo_int_percent=0; rsi_segs=; s_vi=[CS]v1|267401DC851D2580-4000012F803267BB[CE]; OAX=rnneEkzoA7IACz4K; __utma=30057196.685584106.1290273703.1290273703.1290273703.1; __utmc=30057196; RMFD=011PJr8MO1021wJe; __utmb=30057196.3.9.1290273791381; opt=no-opt;

Response

HTTP/1.1 200 OK
Server: Sun-Java-System-Web-Server/7.0
ETag: W/"119e9e8409c3eaf5479026ea9bd857b1"
X-runtime: 1277
Content-Type: text/html; charset=utf-8
Proxy-agent: Sun-Java-System-Web-Server/7.0
Cache-Control: private, max-age=1
Date: Sat, 20 Nov 2010 18:21:23 GMT
Connection: close
Connection: Transfer-Encoding
Content-Length: 54868

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN"
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xmlns:og="http://opengraphprotocol.org/sc
...[SNIP]...
</script>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/main-min.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/ab-min.js" type="text/javascript"></script>
...[SNIP]...
<body class="news story">
<script src="http://www.googletagservices.com/tag/static/google_services.js" type="text/javascript"></script>
...[SNIP]...
</ul>


<script type="text/javascript" src="http://platform.twitter.com/widgets.js"></script>
...[SNIP]...
<div id="bloomberg-horizontal-rbox">
<script type="text/javascript" src="http://cdn.taboolasyndication.com/libtrc/bloomberg/rbox.js?article"></script>
...[SNIP]...
</script>
<script type="text/javascript" src="http://pagead2.googlesyndication.com/pagead/show_ads.js">
</script>
...[SNIP]...
</script>


<script type="text/javascript" src="http://static.newstogram.com/bloomberg-v3/js/histogram.js"></script>
...[SNIP]...
</noscript>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/s_code_p.js" type="text/javascript"></script> <link href="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_style.css" media="screen" rel="stylesheet" type="text/css" /> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_engine_c.js" type="text/javascript"></script> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_conf_en-US_inline.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script type="text/javascript" src="http://js.revsci.net/gateway/gw.js?csid=K05539"></script>
...[SNIP]...

4.45. http://www.bloomberg.com/news/2010-11-18/pfizer-bristol-myers-halt-trial-of-experimental-blood-thinner-on-bleeding.html  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.bloomberg.com
Path:   /news/2010-11-18/pfizer-bristol-myers-halt-trial-of-experimental-blood-thinner-on-bleeding.html

Issue detail

The response dynamically includes the following scripts from other domains:

Request

GET /news/2010-11-18/pfizer-bristol-myers-halt-trial-of-experimental-blood-thinner-on-bleeding.html HTTP/1.1
Host: www.bloomberg.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmv=30057196.|3=opt=no-opt=1,; s_sess=%20s_ria%3Dflash%257CSilverlight%25204.0%3B%20s_campaign%3Dcof_2%3B%20s_cc%3Dtrue%3B%20ev1%3Dtv%253Ahome%3B%20s_sq%3D%3B; __utmz=30057196.1290273703.1.1.utmcsr=s0.2mdn.net|utmccn=(referral)|utmcmd=referral|utmcct=/1797755/Coffee_v1_300x250.swf; path_cookie=_news; BT=; oo_int_hit=1; oo_int_percent=0; rsi_segs=; s_vi=[CS]v1|267401DC851D2580-4000012F803267BB[CE]; OAX=rnneEkzoA7IACz4K; __utma=30057196.685584106.1290273703.1290273703.1290273703.1; __utmc=30057196; RMFD=011PJr8MO1021wJe; __utmb=30057196.3.9.1290273791381; opt=no-opt;

Response

HTTP/1.1 200 OK
Server: Sun-Java-System-Web-Server/7.0
ETag: W/"ed674a791a7fa45619ed2aeabf8898a8"
X-runtime: 25
Content-Type: text/html; charset=utf-8
Proxy-agent: Sun-Java-System-Web-Server/7.0
Cache-Control: private, max-age=1
Date: Sat, 20 Nov 2010 18:21:27 GMT
Connection: close
Connection: Transfer-Encoding
Content-Length: 54487

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN"
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xmlns:og="http://opengraphprotocol.org/sc
...[SNIP]...
</script>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/main-min.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/ab-min.js" type="text/javascript"></script>
...[SNIP]...
<body class="news story">
<script src="http://www.googletagservices.com/tag/static/google_services.js" type="text/javascript"></script>
...[SNIP]...
</ul>


<script type="text/javascript" src="http://platform.twitter.com/widgets.js"></script>
...[SNIP]...
<div id="bloomberg-horizontal-rbox">
<script type="text/javascript" src="http://cdn.taboolasyndication.com/libtrc/bloomberg/rbox.js?article"></script>
...[SNIP]...
</script>
<script type="text/javascript" src="http://pagead2.googlesyndication.com/pagead/show_ads.js">
</script>
...[SNIP]...
</script>


<script type="text/javascript" src="http://static.newstogram.com/bloomberg-v3/js/histogram.js"></script>
...[SNIP]...
</noscript>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/s_code_p.js" type="text/javascript"></script> <link href="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_style.css" media="screen" rel="stylesheet" type="text/css" /> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_engine_c.js" type="text/javascript"></script> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_conf_en-US_inline.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script type="text/javascript" src="http://js.revsci.net/gateway/gw.js?csid=K05539"></script>
...[SNIP]...

4.46. http://www.bloomberg.com/news/2010-11-18/surging-food-prices-likely-to-outlast-china-caps-chart-of-the-day.html  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.bloomberg.com
Path:   /news/2010-11-18/surging-food-prices-likely-to-outlast-china-caps-chart-of-the-day.html

Issue detail

The response dynamically includes the following scripts from other domains:

Request

GET /news/2010-11-18/surging-food-prices-likely-to-outlast-china-caps-chart-of-the-day.html HTTP/1.1
Host: www.bloomberg.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmv=30057196.|3=opt=no-opt=1,; s_sess=%20s_ria%3Dflash%257CSilverlight%25204.0%3B%20s_campaign%3Dcof_2%3B%20s_cc%3Dtrue%3B%20ev1%3Dtv%253Ahome%3B%20s_sq%3D%3B; __utmz=30057196.1290273703.1.1.utmcsr=s0.2mdn.net|utmccn=(referral)|utmcmd=referral|utmcct=/1797755/Coffee_v1_300x250.swf; path_cookie=_news; BT=; oo_int_hit=1; oo_int_percent=0; rsi_segs=; s_vi=[CS]v1|267401DC851D2580-4000012F803267BB[CE]; OAX=rnneEkzoA7IACz4K; __utma=30057196.685584106.1290273703.1290273703.1290273703.1; __utmc=30057196; RMFD=011PJr8MO1021wJe; __utmb=30057196.3.9.1290273791381; opt=no-opt;

Response

HTTP/1.1 200 OK
Server: Sun-Java-System-Web-Server/7.0
ETag: W/"6149ff020b312531f1d25fad00006bb6"
X-runtime: 749
Content-Type: text/html; charset=utf-8
Proxy-agent: Sun-Java-System-Web-Server/7.0
Cache-Control: private, max-age=47
Date: Sat, 20 Nov 2010 18:21:23 GMT
Connection: close
Connection: Transfer-Encoding
Content-Length: 49230

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN"
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xmlns:og="http://opengraphprotocol.org/sc
...[SNIP]...
</script>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/main-min.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/ab-min.js" type="text/javascript"></script>
...[SNIP]...
<body class="news story">
<script src="http://www.googletagservices.com/tag/static/google_services.js" type="text/javascript"></script>
...[SNIP]...
</ul>


<script type="text/javascript" src="http://platform.twitter.com/widgets.js"></script>
...[SNIP]...
<div id="bloomberg-horizontal-rbox">
<script type="text/javascript" src="http://cdn.taboolasyndication.com/libtrc/bloomberg/rbox.js?article"></script>
...[SNIP]...
</script>
<script type="text/javascript" src="http://pagead2.googlesyndication.com/pagead/show_ads.js">
</script>
...[SNIP]...
</script>

<script type="text/javascript" src="http://static.newstogram.com/bloomberg-v3/js/histogram.js"></script>
...[SNIP]...
</noscript>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/s_code_p.js" type="text/javascript"></script> <link href="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_style.css" media="screen" rel="stylesheet" type="text/css" /> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_engine_c.js" type="text/javascript"></script> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_conf_en-US_inline.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script type="text/javascript" src="http://js.revsci.net/gateway/gw.js?csid=K05539"></script>
...[SNIP]...

4.47. http://www.bloomberg.com/news/2010-11-19/-lost-john-osborne-play-returns-angry-young-man-john-simon.html  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.bloomberg.com
Path:   /news/2010-11-19/-lost-john-osborne-play-returns-angry-young-man-john-simon.html

Issue detail

The response dynamically includes the following scripts from other domains:

Request

GET /news/2010-11-19/-lost-john-osborne-play-returns-angry-young-man-john-simon.html HTTP/1.1
Host: www.bloomberg.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmv=30057196.|3=opt=no-opt=1,; s_sess=%20s_ria%3Dflash%257CSilverlight%25204.0%3B%20s_campaign%3Dcof_2%3B%20s_cc%3Dtrue%3B%20ev1%3Dtv%253Ahome%3B%20s_sq%3D%3B; __utmz=30057196.1290273703.1.1.utmcsr=s0.2mdn.net|utmccn=(referral)|utmcmd=referral|utmcct=/1797755/Coffee_v1_300x250.swf; path_cookie=_news; BT=; oo_int_hit=1; oo_int_percent=0; rsi_segs=; s_vi=[CS]v1|267401DC851D2580-4000012F803267BB[CE]; OAX=rnneEkzoA7IACz4K; __utma=30057196.685584106.1290273703.1290273703.1290273703.1; __utmc=30057196; RMFD=011PJr8MO1021wJe; __utmb=30057196.3.9.1290273791381; opt=no-opt;

Response

HTTP/1.1 200 OK
Server: Sun-Java-System-Web-Server/7.0
ETag: W/"ce945cb80290ca5c2d0042db1af2cc90"
X-runtime: 22
Content-Type: text/html; charset=utf-8
Proxy-agent: Sun-Java-System-Web-Server/7.0
Cache-Control: private, max-age=9
Date: Sat, 20 Nov 2010 18:21:00 GMT
Connection: close
Connection: Transfer-Encoding
Content-Length: 52024

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN"
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xmlns:og="http://opengraphprotocol.org/sc
...[SNIP]...
</script>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/main-min.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/ab-min.js" type="text/javascript"></script>
...[SNIP]...
<body class="news story">
<script src="http://www.googletagservices.com/tag/static/google_services.js" type="text/javascript"></script>
...[SNIP]...
</ul>


<script type="text/javascript" src="http://platform.twitter.com/widgets.js"></script>
...[SNIP]...
<div id="bloomberg-horizontal-rbox">
<script type="text/javascript" src="http://cdn.taboolasyndication.com/libtrc/bloomberg/rbox.js?article"></script>
...[SNIP]...
</script>
<script type="text/javascript" src="http://pagead2.googlesyndication.com/pagead/show_ads.js">
</script>
...[SNIP]...
</script>


<script type="text/javascript" src="http://static.newstogram.com/bloomberg-v3/js/histogram.js"></script>
...[SNIP]...
</noscript>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/s_code_p.js" type="text/javascript"></script> <link href="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_style.css" media="screen" rel="stylesheet" type="text/css" /> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_engine_c.js" type="text/javascript"></script> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_conf_en-US_inline.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script type="text/javascript" src="http://js.revsci.net/gateway/gw.js?csid=K05539"></script>
...[SNIP]...

4.48. http://www.bloomberg.com/news/2010-11-19/amgen-s-bone-drug-denosumab-cleared-to-treat-fractures-in-cancer-patients.html  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.bloomberg.com
Path:   /news/2010-11-19/amgen-s-bone-drug-denosumab-cleared-to-treat-fractures-in-cancer-patients.html

Issue detail

The response dynamically includes the following scripts from other domains:

Request

GET /news/2010-11-19/amgen-s-bone-drug-denosumab-cleared-to-treat-fractures-in-cancer-patients.html HTTP/1.1
Host: www.bloomberg.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmv=30057196.|3=opt=no-opt=1,; s_sess=%20s_ria%3Dflash%257CSilverlight%25204.0%3B%20s_campaign%3Dcof_2%3B%20s_cc%3Dtrue%3B%20ev1%3Dtv%253Ahome%3B%20s_sq%3D%3B; __utmz=30057196.1290273703.1.1.utmcsr=s0.2mdn.net|utmccn=(referral)|utmcmd=referral|utmcct=/1797755/Coffee_v1_300x250.swf; path_cookie=_news; BT=; oo_int_hit=1; oo_int_percent=0; rsi_segs=; s_vi=[CS]v1|267401DC851D2580-4000012F803267BB[CE]; OAX=rnneEkzoA7IACz4K; __utma=30057196.685584106.1290273703.1290273703.1290273703.1; __utmc=30057196; RMFD=011PJr8MO1021wJe; __utmb=30057196.3.9.1290273791381; opt=no-opt;

Response

HTTP/1.1 200 OK
Server: Sun-Java-System-Web-Server/7.0
ETag: W/"450c5db613ece4a8c3b673ec0435ef52"
X-runtime: 1157
Content-Type: text/html; charset=utf-8
Proxy-agent: Sun-Java-System-Web-Server/7.0
Cache-Control: private, max-age=14
Date: Sat, 20 Nov 2010 18:21:07 GMT
Connection: close
Connection: Transfer-Encoding
Content-Length: 53430

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN"
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xmlns:og="http://opengraphprotocol.org/sc
...[SNIP]...
</script>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/main-min.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/ab-min.js" type="text/javascript"></script>
...[SNIP]...
<body class="news story">
<script src="http://www.googletagservices.com/tag/static/google_services.js" type="text/javascript"></script>
...[SNIP]...
</ul>


<script type="text/javascript" src="http://platform.twitter.com/widgets.js"></script>
...[SNIP]...
<div id="bloomberg-horizontal-rbox">
<script type="text/javascript" src="http://cdn.taboolasyndication.com/libtrc/bloomberg/rbox.js?article"></script>
...[SNIP]...
</script>
<script type="text/javascript" src="http://pagead2.googlesyndication.com/pagead/show_ads.js">
</script>
...[SNIP]...
</script>


<script type="text/javascript" src="http://static.newstogram.com/bloomberg-v3/js/histogram.js"></script>
...[SNIP]...
</noscript>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/s_code_p.js" type="text/javascript"></script> <link href="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_style.css" media="screen" rel="stylesheet" type="text/css" /> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_engine_c.js" type="text/javascript"></script> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_conf_en-US_inline.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script type="text/javascript" src="http://js.revsci.net/gateway/gw.js?csid=K05539"></script>
...[SNIP]...

4.49. http://www.bloomberg.com/news/2010-11-19/apple-may-introduce-thinner-ipad-tablet-early-next-year-analysts-predict.html  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.bloomberg.com
Path:   /news/2010-11-19/apple-may-introduce-thinner-ipad-tablet-early-next-year-analysts-predict.html

Issue detail

The response dynamically includes the following scripts from other domains:

Request

GET /news/2010-11-19/apple-may-introduce-thinner-ipad-tablet-early-next-year-analysts-predict.html HTTP/1.1
Host: www.bloomberg.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmv=30057196.|3=opt=no-opt=1,; s_sess=%20s_ria%3Dflash%257CSilverlight%25204.0%3B%20s_campaign%3Dcof_2%3B%20s_cc%3Dtrue%3B%20ev1%3Dtv%253Ahome%3B%20s_sq%3D%3B; __utmz=30057196.1290273703.1.1.utmcsr=s0.2mdn.net|utmccn=(referral)|utmcmd=referral|utmcct=/1797755/Coffee_v1_300x250.swf; path_cookie=_news; BT=; oo_int_hit=1; oo_int_percent=0; rsi_segs=; s_vi=[CS]v1|267401DC851D2580-4000012F803267BB[CE]; OAX=rnneEkzoA7IACz4K; __utma=30057196.685584106.1290273703.1290273703.1290273703.1; __utmc=30057196; RMFD=011PJr8MO1021wJe; __utmb=30057196.3.9.1290273791381; opt=no-opt;

Response

HTTP/1.1 200 OK
Server: Sun-Java-System-Web-Server/7.0
ETag: W/"0fba299937e8f01c35a45b0a8e71bca8"
X-runtime: 20
Content-Type: text/html; charset=utf-8
Proxy-agent: Sun-Java-System-Web-Server/7.0
Cache-Control: private, max-age=82
Date: Sat, 20 Nov 2010 18:21:05 GMT
Connection: close
Connection: Transfer-Encoding
Content-Length: 52752

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN"
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xmlns:og="http://opengraphprotocol.org/sc
...[SNIP]...
</script>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/main-min.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/ab-min.js" type="text/javascript"></script>
...[SNIP]...
<body class="news story">
<script src="http://www.googletagservices.com/tag/static/google_services.js" type="text/javascript"></script>
...[SNIP]...
</ul>


<script type="text/javascript" src="http://platform.twitter.com/widgets.js"></script>
...[SNIP]...
<div id="bloomberg-horizontal-rbox">
<script type="text/javascript" src="http://cdn.taboolasyndication.com/libtrc/bloomberg/rbox.js?article"></script>
...[SNIP]...
</script>
<script type="text/javascript" src="http://pagead2.googlesyndication.com/pagead/show_ads.js">
</script>
...[SNIP]...
</script>


<script type="text/javascript" src="http://static.newstogram.com/bloomberg-v3/js/histogram.js"></script>
...[SNIP]...
</noscript>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/s_code_p.js" type="text/javascript"></script> <link href="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_style.css" media="screen" rel="stylesheet" type="text/css" /> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_engine_c.js" type="text/javascript"></script> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_conf_en-US_inline.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script type="text/javascript" src="http://js.revsci.net/gateway/gw.js?csid=K05539"></script>
...[SNIP]...

4.50. http://www.bloomberg.com/news/2010-11-19/bankrupt-owner-of-lipstick-building-can-use-cash-update1-.html  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.bloomberg.com
Path:   /news/2010-11-19/bankrupt-owner-of-lipstick-building-can-use-cash-update1-.html

Issue detail

The response dynamically includes the following scripts from other domains:

Request

GET /news/2010-11-19/bankrupt-owner-of-lipstick-building-can-use-cash-update1-.html HTTP/1.1
Host: www.bloomberg.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmv=30057196.|3=opt=no-opt=1,; s_sess=%20s_ria%3Dflash%257CSilverlight%25204.0%3B%20s_campaign%3Dcof_2%3B%20s_cc%3Dtrue%3B%20ev1%3Dtv%253Ahome%3B%20s_sq%3D%3B; __utmz=30057196.1290273703.1.1.utmcsr=s0.2mdn.net|utmccn=(referral)|utmcmd=referral|utmcct=/1797755/Coffee_v1_300x250.swf; path_cookie=_news; BT=; oo_int_hit=1; oo_int_percent=0; rsi_segs=; s_vi=[CS]v1|267401DC851D2580-4000012F803267BB[CE]; OAX=rnneEkzoA7IACz4K; __utma=30057196.685584106.1290273703.1290273703.1290273703.1; __utmc=30057196; RMFD=011PJr8MO1021wJe; __utmb=30057196.3.9.1290273791381; opt=no-opt;

Response

HTTP/1.1 200 OK
Server: Sun-Java-System-Web-Server/7.0
ETag: W/"09474b5a08b3609a3083bbb4a0797b10"
X-runtime: 23
Content-Type: text/html; charset=utf-8
Proxy-agent: Sun-Java-System-Web-Server/7.0
Cache-Control: private, max-age=18
Date: Sat, 20 Nov 2010 18:20:47 GMT
Connection: close
Connection: Transfer-Encoding
Content-Length: 49790

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN"
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xmlns:og="http://opengraphprotocol.org/sc
...[SNIP]...
</script>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/main-min.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/ab-min.js" type="text/javascript"></script>
...[SNIP]...
<body class="news story">
<script src="http://www.googletagservices.com/tag/static/google_services.js" type="text/javascript"></script>
...[SNIP]...
</ul>


<script type="text/javascript" src="http://platform.twitter.com/widgets.js"></script>
...[SNIP]...
<div id="bloomberg-horizontal-rbox">
<script type="text/javascript" src="http://cdn.taboolasyndication.com/libtrc/bloomberg/rbox.js?article"></script>
...[SNIP]...
</script>
<script type="text/javascript" src="http://pagead2.googlesyndication.com/pagead/show_ads.js">
</script>
...[SNIP]...
</script>


<script type="text/javascript" src="http://static.newstogram.com/bloomberg-v3/js/histogram.js"></script>
...[SNIP]...
</noscript>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/s_code_p.js" type="text/javascript"></script> <link href="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_style.css" media="screen" rel="stylesheet" type="text/css" /> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_engine_c.js" type="text/javascript"></script> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_conf_en-US_inline.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script type="text/javascript" src="http://js.revsci.net/gateway/gw.js?csid=K05539"></script>
...[SNIP]...

4.51. http://www.bloomberg.com/news/2010-11-19/bernanke-takes-defense-of-monetary-stimulus-abroad-turns-tables-on-china.html  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.bloomberg.com
Path:   /news/2010-11-19/bernanke-takes-defense-of-monetary-stimulus-abroad-turns-tables-on-china.html

Issue detail

The response dynamically includes the following scripts from other domains:

Request

GET /news/2010-11-19/bernanke-takes-defense-of-monetary-stimulus-abroad-turns-tables-on-china.html HTTP/1.1
Host: www.bloomberg.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmv=30057196.|3=opt=no-opt=1,; s_sess=%20s_ria%3Dflash%257CSilverlight%25204.0%3B%20s_campaign%3Dcof_2%3B%20s_cc%3Dtrue%3B%20ev1%3Dtv%253Ahome%3B%20s_sq%3D%3B; __utmz=30057196.1290273703.1.1.utmcsr=s0.2mdn.net|utmccn=(referral)|utmcmd=referral|utmcct=/1797755/Coffee_v1_300x250.swf; path_cookie=_news; BT=; oo_int_hit=1; oo_int_percent=0; rsi_segs=; s_vi=[CS]v1|267401DC851D2580-4000012F803267BB[CE]; OAX=rnneEkzoA7IACz4K; __utma=30057196.685584106.1290273703.1290273703.1290273703.1; __utmc=30057196; RMFD=011PJr8MO1021wJe; __utmb=30057196.3.9.1290273791381; opt=no-opt;

Response

HTTP/1.1 200 OK
Server: Sun-Java-System-Web-Server/7.0
ETag: W/"0d0d86903dac3efef58748ce3c09c75a"
X-runtime: 1611
Content-Type: text/html; charset=utf-8
Proxy-agent: Sun-Java-System-Web-Server/7.0
Cache-Control: private, max-age=23
Date: Sat, 20 Nov 2010 18:20:45 GMT
Connection: close
Connection: Transfer-Encoding
Content-Length: 65298

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN"
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xmlns:og="http://opengraphprotocol.org/sc
...[SNIP]...
</script>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/main-min.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/ab-min.js" type="text/javascript"></script>
...[SNIP]...
<body class="news story">
<script src="http://www.googletagservices.com/tag/static/google_services.js" type="text/javascript"></script>
...[SNIP]...
</ul>


<script type="text/javascript" src="http://platform.twitter.com/widgets.js"></script>
...[SNIP]...
<div id="bloomberg-horizontal-rbox">
<script type="text/javascript" src="http://cdn.taboolasyndication.com/libtrc/bloomberg/rbox.js?article"></script>
...[SNIP]...
</script>
<script type="text/javascript" src="http://pagead2.googlesyndication.com/pagead/show_ads.js">
</script>
...[SNIP]...
</script>


<script type="text/javascript" src="http://static.newstogram.com/bloomberg-v3/js/histogram.js"></script>
...[SNIP]...
</noscript>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/s_code_p.js" type="text/javascript"></script> <link href="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_style.css" media="screen" rel="stylesheet" type="text/css" /> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_engine_c.js" type="text/javascript"></script> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_conf_en-US_inline.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script type="text/javascript" src="http://js.revsci.net/gateway/gw.js?csid=K05539"></script>
...[SNIP]...

4.52. http://www.bloomberg.com/news/2010-11-19/boston-scientific-to-buy-full-control-of-sadra-medical-update3-.html  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.bloomberg.com
Path:   /news/2010-11-19/boston-scientific-to-buy-full-control-of-sadra-medical-update3-.html

Issue detail

The response dynamically includes the following scripts from other domains:

Request

GET /news/2010-11-19/boston-scientific-to-buy-full-control-of-sadra-medical-update3-.html HTTP/1.1
Host: www.bloomberg.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmv=30057196.|3=opt=no-opt=1,; s_sess=%20s_ria%3Dflash%257CSilverlight%25204.0%3B%20s_campaign%3Dcof_2%3B%20s_cc%3Dtrue%3B%20ev1%3Dtv%253Ahome%3B%20s_sq%3D%3B; __utmz=30057196.1290273703.1.1.utmcsr=s0.2mdn.net|utmccn=(referral)|utmcmd=referral|utmcct=/1797755/Coffee_v1_300x250.swf; path_cookie=_news; BT=; oo_int_hit=1; oo_int_percent=0; rsi_segs=; s_vi=[CS]v1|267401DC851D2580-4000012F803267BB[CE]; OAX=rnneEkzoA7IACz4K; __utma=30057196.685584106.1290273703.1290273703.1290273703.1; __utmc=30057196; RMFD=011PJr8MO1021wJe; __utmb=30057196.3.9.1290273791381; opt=no-opt;

Response

HTTP/1.1 200 OK
Server: Sun-Java-System-Web-Server/7.0
ETag: W/"3b4a5e93a1f9db0b298100c0c8fdf910"
X-runtime: 503
Content-Type: text/html; charset=utf-8
Proxy-agent: Sun-Java-System-Web-Server/7.0
Cache-Control: private, max-age=14
Date: Sat, 20 Nov 2010 18:21:03 GMT
Connection: close
Connection: Transfer-Encoding
Content-Length: 53403

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN"
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xmlns:og="http://opengraphprotocol.org/sc
...[SNIP]...
</script>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/main-min.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/ab-min.js" type="text/javascript"></script>
...[SNIP]...
<body class="news story">
<script src="http://www.googletagservices.com/tag/static/google_services.js" type="text/javascript"></script>
...[SNIP]...
</ul>


<script type="text/javascript" src="http://platform.twitter.com/widgets.js"></script>
...[SNIP]...
<div id="bloomberg-horizontal-rbox">
<script type="text/javascript" src="http://cdn.taboolasyndication.com/libtrc/bloomberg/rbox.js?article"></script>
...[SNIP]...
</script>
<script type="text/javascript" src="http://pagead2.googlesyndication.com/pagead/show_ads.js">
</script>
...[SNIP]...
</script>


<script type="text/javascript" src="http://static.newstogram.com/bloomberg-v3/js/histogram.js"></script>
...[SNIP]...
</noscript>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/s_code_p.js" type="text/javascript"></script> <link href="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_style.css" media="screen" rel="stylesheet" type="text/css" /> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_engine_c.js" type="text/javascript"></script> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_conf_en-US_inline.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script type="text/javascript" src="http://js.revsci.net/gateway/gw.js?csid=K05539"></script>
...[SNIP]...

4.53. http://www.bloomberg.com/news/2010-11-19/california-texas-florida-new-york-report-jobs-gains-as-economy-recovers.html  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.bloomberg.com
Path:   /news/2010-11-19/california-texas-florida-new-york-report-jobs-gains-as-economy-recovers.html

Issue detail

The response dynamically includes the following scripts from other domains:

Request

GET /news/2010-11-19/california-texas-florida-new-york-report-jobs-gains-as-economy-recovers.html HTTP/1.1
Host: www.bloomberg.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmv=30057196.|3=opt=no-opt=1,; s_sess=%20s_ria%3Dflash%257CSilverlight%25204.0%3B%20s_campaign%3Dcof_2%3B%20s_cc%3Dtrue%3B%20ev1%3Dtv%253Ahome%3B%20s_sq%3D%3B; __utmz=30057196.1290273703.1.1.utmcsr=s0.2mdn.net|utmccn=(referral)|utmcmd=referral|utmcct=/1797755/Coffee_v1_300x250.swf; path_cookie=_news; BT=; oo_int_hit=1; oo_int_percent=0; rsi_segs=; s_vi=[CS]v1|267401DC851D2580-4000012F803267BB[CE]; OAX=rnneEkzoA7IACz4K; __utma=30057196.685584106.1290273703.1290273703.1290273703.1; __utmc=30057196; RMFD=011PJr8MO1021wJe; __utmb=30057196.3.9.1290273791381; opt=no-opt;

Response

HTTP/1.1 200 OK
Server: Sun-Java-System-Web-Server/7.0
ETag: W/"8b38e8d82147ef32e460393cd8ced86b"
X-runtime: 599
Content-Type: text/html; charset=utf-8
Proxy-agent: Sun-Java-System-Web-Server/7.0
Cache-Control: private, max-age=2
Date: Sat, 20 Nov 2010 18:21:06 GMT
Connection: close
Connection: Transfer-Encoding
Content-Length: 54704

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN"
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xmlns:og="http://opengraphprotocol.org/sc
...[SNIP]...
</script>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/main-min.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/ab-min.js" type="text/javascript"></script>
...[SNIP]...
<body class="news story">
<script src="http://www.googletagservices.com/tag/static/google_services.js" type="text/javascript"></script>
...[SNIP]...
</ul>


<script type="text/javascript" src="http://platform.twitter.com/widgets.js"></script>
...[SNIP]...
<div id="bloomberg-horizontal-rbox">
<script type="text/javascript" src="http://cdn.taboolasyndication.com/libtrc/bloomberg/rbox.js?article"></script>
...[SNIP]...
</script>
<script type="text/javascript" src="http://pagead2.googlesyndication.com/pagead/show_ads.js">
</script>
...[SNIP]...
</script>


<script type="text/javascript" src="http://static.newstogram.com/bloomberg-v3/js/histogram.js"></script>
...[SNIP]...
</noscript>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/s_code_p.js" type="text/javascript"></script> <link href="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_style.css" media="screen" rel="stylesheet" type="text/css" /> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_engine_c.js" type="text/javascript"></script> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_conf_en-US_inline.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script type="text/javascript" src="http://js.revsci.net/gateway/gw.js?csid=K05539"></script>
...[SNIP]...

4.54. http://www.bloomberg.com/news/2010-11-19/camilla-could-become-queen-prince-charles-tells-nbc-network-in-interview.html  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.bloomberg.com
Path:   /news/2010-11-19/camilla-could-become-queen-prince-charles-tells-nbc-network-in-interview.html

Issue detail

The response dynamically includes the following scripts from other domains:

Request

GET /news/2010-11-19/camilla-could-become-queen-prince-charles-tells-nbc-network-in-interview.html HTTP/1.1
Host: www.bloomberg.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmv=30057196.|3=opt=no-opt=1,; s_sess=%20s_ria%3Dflash%257CSilverlight%25204.0%3B%20s_campaign%3Dcof_2%3B%20s_cc%3Dtrue%3B%20ev1%3Dtv%253Ahome%3B%20s_sq%3D%3B; __utmz=30057196.1290273703.1.1.utmcsr=s0.2mdn.net|utmccn=(referral)|utmcmd=referral|utmcct=/1797755/Coffee_v1_300x250.swf; path_cookie=_news; BT=; oo_int_hit=1; oo_int_percent=0; rsi_segs=; s_vi=[CS]v1|267401DC851D2580-4000012F803267BB[CE]; OAX=rnneEkzoA7IACz4K; __utma=30057196.685584106.1290273703.1290273703.1290273703.1; __utmc=30057196; RMFD=011PJr8MO1021wJe; __utmb=30057196.3.9.1290273791381; opt=no-opt;

Response

HTTP/1.1 200 OK
Server: Sun-Java-System-Web-Server/7.0
ETag: W/"5301b860042e54c836543e12440431c9"
X-runtime: 25
Content-Type: text/html; charset=utf-8
Proxy-agent: Sun-Java-System-Web-Server/7.0
Cache-Control: private, max-age=18
Date: Sat, 20 Nov 2010 18:21:00 GMT
Connection: close
Connection: Transfer-Encoding
Content-Length: 50757

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN"
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xmlns:og="http://opengraphprotocol.org/sc
...[SNIP]...
</script>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/main-min.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/ab-min.js" type="text/javascript"></script>
...[SNIP]...
<body class="news story">
<script src="http://www.googletagservices.com/tag/static/google_services.js" type="text/javascript"></script>
...[SNIP]...
</ul>


<script type="text/javascript" src="http://platform.twitter.com/widgets.js"></script>
...[SNIP]...
<div id="bloomberg-horizontal-rbox">
<script type="text/javascript" src="http://cdn.taboolasyndication.com/libtrc/bloomberg/rbox.js?article"></script>
...[SNIP]...
</script>
<script type="text/javascript" src="http://pagead2.googlesyndication.com/pagead/show_ads.js">
</script>
...[SNIP]...
</script>


<script type="text/javascript" src="http://static.newstogram.com/bloomberg-v3/js/histogram.js"></script>
...[SNIP]...
</noscript>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/s_code_p.js" type="text/javascript"></script> <link href="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_style.css" media="screen" rel="stylesheet" type="text/css" /> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_engine_c.js" type="text/javascript"></script> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_conf_en-US_inline.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script type="text/javascript" src="http://js.revsci.net/gateway/gw.js?csid=K05539"></script>
...[SNIP]...

4.55. http://www.bloomberg.com/news/2010-11-19/cleopatra-outfoxed-her-brother-husband-by-seducing-caesar-lewis-lapham.html  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.bloomberg.com
Path:   /news/2010-11-19/cleopatra-outfoxed-her-brother-husband-by-seducing-caesar-lewis-lapham.html

Issue detail

The response dynamically includes the following scripts from other domains:

Request

GET /news/2010-11-19/cleopatra-outfoxed-her-brother-husband-by-seducing-caesar-lewis-lapham.html HTTP/1.1
Host: www.bloomberg.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmv=30057196.|3=opt=no-opt=1,; s_sess=%20s_ria%3Dflash%257CSilverlight%25204.0%3B%20s_campaign%3Dcof_2%3B%20s_cc%3Dtrue%3B%20ev1%3Dtv%253Ahome%3B%20s_sq%3D%3B; __utmz=30057196.1290273703.1.1.utmcsr=s0.2mdn.net|utmccn=(referral)|utmcmd=referral|utmcct=/1797755/Coffee_v1_300x250.swf; path_cookie=_news; BT=; oo_int_hit=1; oo_int_percent=0; rsi_segs=; s_vi=[CS]v1|267401DC851D2580-4000012F803267BB[CE]; OAX=rnneEkzoA7IACz4K; __utma=30057196.685584106.1290273703.1290273703.1290273703.1; __utmc=30057196; RMFD=011PJr8MO1021wJe; __utmb=30057196.3.9.1290273791381; opt=no-opt;

Response

HTTP/1.1 200 OK
Server: Sun-Java-System-Web-Server/7.0
ETag: W/"92cd6ba9c23dcbe5a9d19ecd0d107bf6"
X-runtime: 541
Content-Type: text/html; charset=utf-8
Proxy-agent: Sun-Java-System-Web-Server/7.0
Cache-Control: private, max-age=20
Date: Sat, 20 Nov 2010 18:21:00 GMT
Connection: close
Connection: Transfer-Encoding
Content-Length: 51339

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN"
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xmlns:og="http://opengraphprotocol.org/sc
...[SNIP]...
</script>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/main-min.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/ab-min.js" type="text/javascript"></script>
...[SNIP]...
<body class="news story">
<script src="http://www.googletagservices.com/tag/static/google_services.js" type="text/javascript"></script>
...[SNIP]...
</ul>


<script type="text/javascript" src="http://platform.twitter.com/widgets.js"></script>
...[SNIP]...
<div id="bloomberg-horizontal-rbox">
<script type="text/javascript" src="http://cdn.taboolasyndication.com/libtrc/bloomberg/rbox.js?article"></script>
...[SNIP]...
</script>
<script type="text/javascript" src="http://pagead2.googlesyndication.com/pagead/show_ads.js">
</script>
...[SNIP]...
</script>


<script type="text/javascript" src="http://static.newstogram.com/bloomberg-v3/js/histogram.js"></script>
...[SNIP]...
</noscript>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/s_code_p.js" type="text/javascript"></script> <link href="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_style.css" media="screen" rel="stylesheet" type="text/css" /> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_engine_c.js" type="text/javascript"></script> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_conf_en-US_inline.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script type="text/javascript" src="http://js.revsci.net/gateway/gw.js?csid=K05539"></script>
...[SNIP]...

4.56. http://www.bloomberg.com/news/2010-11-19/cox-communications-takes-on-at-t-verizon-with-mobile-offering.html  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.bloomberg.com
Path:   /news/2010-11-19/cox-communications-takes-on-at-t-verizon-with-mobile-offering.html

Issue detail

The response dynamically includes the following scripts from other domains:

Request

GET /news/2010-11-19/cox-communications-takes-on-at-t-verizon-with-mobile-offering.html HTTP/1.1
Host: www.bloomberg.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmv=30057196.|3=opt=no-opt=1,; s_sess=%20s_ria%3Dflash%257CSilverlight%25204.0%3B%20s_campaign%3Dcof_2%3B%20s_cc%3Dtrue%3B%20ev1%3Dtv%253Ahome%3B%20s_sq%3D%3B; __utmz=30057196.1290273703.1.1.utmcsr=s0.2mdn.net|utmccn=(referral)|utmcmd=referral|utmcct=/1797755/Coffee_v1_300x250.swf; path_cookie=_news; BT=; oo_int_hit=1; oo_int_percent=0; rsi_segs=; s_vi=[CS]v1|267401DC851D2580-4000012F803267BB[CE]; OAX=rnneEkzoA7IACz4K; __utma=30057196.685584106.1290273703.1290273703.1290273703.1; __utmc=30057196; RMFD=011PJr8MO1021wJe; __utmb=30057196.3.9.1290273791381; opt=no-opt;

Response

HTTP/1.1 200 OK
Server: Sun-Java-System-Web-Server/7.0
ETag: W/"39402bf3552087d2418e459085d2dd5e"
X-runtime: 485
Content-Type: text/html; charset=utf-8
Proxy-agent: Sun-Java-System-Web-Server/7.0
Cache-Control: private, max-age=369
Date: Sat, 20 Nov 2010 18:21:08 GMT
Connection: close
Connection: Transfer-Encoding
Content-Length: 51073

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN"
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xmlns:og="http://opengraphprotocol.org/sc
...[SNIP]...
</script>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/main-min.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/ab-min.js" type="text/javascript"></script>
...[SNIP]...
<body class="news story">
<script src="http://www.googletagservices.com/tag/static/google_services.js" type="text/javascript"></script>
...[SNIP]...
</ul>


<script type="text/javascript" src="http://platform.twitter.com/widgets.js"></script>
...[SNIP]...
<div id="bloomberg-horizontal-rbox">
<script type="text/javascript" src="http://cdn.taboolasyndication.com/libtrc/bloomberg/rbox.js?article"></script>
...[SNIP]...
</script>
<script type="text/javascript" src="http://pagead2.googlesyndication.com/pagead/show_ads.js">
</script>
...[SNIP]...
</script>


<script type="text/javascript" src="http://static.newstogram.com/bloomberg-v3/js/histogram.js"></script>
...[SNIP]...
</noscript>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/s_code_p.js" type="text/javascript"></script> <link href="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_style.css" media="screen" rel="stylesheet" type="text/css" /> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_engine_c.js" type="text/javascript"></script> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_conf_en-US_inline.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script type="text/javascript" src="http://js.revsci.net/gateway/gw.js?csid=K05539"></script>
...[SNIP]...

4.57. http://www.bloomberg.com/news/2010-11-19/crude-heads-for-weekly-loss-after-china-orders-banks-to-increase-reserves.html  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.bloomberg.com
Path:   /news/2010-11-19/crude-heads-for-weekly-loss-after-china-orders-banks-to-increase-reserves.html

Issue detail

The response dynamically includes the following scripts from other domains:

Request

GET /news/2010-11-19/crude-heads-for-weekly-loss-after-china-orders-banks-to-increase-reserves.html HTTP/1.1
Host: www.bloomberg.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmv=30057196.|3=opt=no-opt=1,; s_sess=%20s_ria%3Dflash%257CSilverlight%25204.0%3B%20s_campaign%3Dcof_2%3B%20s_cc%3Dtrue%3B%20ev1%3Dtv%253Ahome%3B%20s_sq%3D%3B; __utmz=30057196.1290273703.1.1.utmcsr=s0.2mdn.net|utmccn=(referral)|utmcmd=referral|utmcct=/1797755/Coffee_v1_300x250.swf; path_cookie=_news; BT=; oo_int_hit=1; oo_int_percent=0; rsi_segs=; s_vi=[CS]v1|267401DC851D2580-4000012F803267BB[CE]; OAX=rnneEkzoA7IACz4K; __utma=30057196.685584106.1290273703.1290273703.1290273703.1; __utmc=30057196; RMFD=011PJr8MO1021wJe; __utmb=30057196.3.9.1290273791381; opt=no-opt;

Response

HTTP/1.1 200 OK
Server: Sun-Java-System-Web-Server/7.0
ETag: W/"667c1a8d560a11e61aa276f424e2b523"
X-runtime: 20
Content-Type: text/html; charset=utf-8
Proxy-agent: Sun-Java-System-Web-Server/7.0
Cache-Control: private, max-age=21
Date: Sat, 20 Nov 2010 18:21:08 GMT
Connection: close
Connection: Transfer-Encoding
Content-Length: 54948

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN"
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xmlns:og="http://opengraphprotocol.org/sc
...[SNIP]...
</script>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/main-min.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/ab-min.js" type="text/javascript"></script>
...[SNIP]...
<body class="news story">
<script src="http://www.googletagservices.com/tag/static/google_services.js" type="text/javascript"></script>
...[SNIP]...
</ul>


<script type="text/javascript" src="http://platform.twitter.com/widgets.js"></script>
...[SNIP]...
<div id="bloomberg-horizontal-rbox">
<script type="text/javascript" src="http://cdn.taboolasyndication.com/libtrc/bloomberg/rbox.js?article"></script>
...[SNIP]...
</script>
<script type="text/javascript" src="http://pagead2.googlesyndication.com/pagead/show_ads.js">
</script>
...[SNIP]...
</script>


<script type="text/javascript" src="http://static.newstogram.com/bloomberg-v3/js/histogram.js"></script>
...[SNIP]...
</noscript>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/s_code_p.js" type="text/javascript"></script> <link href="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_style.css" media="screen" rel="stylesheet" type="text/css" /> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_engine_c.js" type="text/javascript"></script> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_conf_en-US_inline.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script type="text/javascript" src="http://js.revsci.net/gateway/gw.js?csid=K05539"></script>
...[SNIP]...

4.58. http://www.bloomberg.com/news/2010-11-19/ex-societe-generale-trader-agrawal-is-found-guilty-of-stealing-secrets.html  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.bloomberg.com
Path:   /news/2010-11-19/ex-societe-generale-trader-agrawal-is-found-guilty-of-stealing-secrets.html

Issue detail

The response dynamically includes the following scripts from other domains:

Request

GET /news/2010-11-19/ex-societe-generale-trader-agrawal-is-found-guilty-of-stealing-secrets.html HTTP/1.1
Host: www.bloomberg.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmv=30057196.|3=opt=no-opt=1,; s_sess=%20s_ria%3Dflash%257CSilverlight%25204.0%3B%20s_campaign%3Dcof_2%3B%20s_cc%3Dtrue%3B%20ev1%3Dtv%253Ahome%3B%20s_sq%3D%3B; __utmz=30057196.1290273703.1.1.utmcsr=s0.2mdn.net|utmccn=(referral)|utmcmd=referral|utmcct=/1797755/Coffee_v1_300x250.swf; path_cookie=_news; BT=; oo_int_hit=1; oo_int_percent=0; rsi_segs=; s_vi=[CS]v1|267401DC851D2580-4000012F803267BB[CE]; OAX=rnneEkzoA7IACz4K; __utma=30057196.685584106.1290273703.1290273703.1290273703.1; __utmc=30057196; RMFD=011PJr8MO1021wJe; __utmb=30057196.3.9.1290273791381; opt=no-opt;

Response

HTTP/1.1 200 OK
Server: Sun-Java-System-Web-Server/7.0
ETag: W/"bebb294c2c20b14fdea396cfa4b66249"
X-runtime: 26
Content-Type: text/html; charset=utf-8
Proxy-agent: Sun-Java-System-Web-Server/7.0
Cache-Control: private, max-age=1
Date: Sat, 20 Nov 2010 18:20:55 GMT
Connection: close
Connection: Transfer-Encoding
Content-Length: 51814

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN"
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xmlns:og="http://opengraphprotocol.org/sc
...[SNIP]...
</script>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/main-min.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/ab-min.js" type="text/javascript"></script>
...[SNIP]...
<body class="news story">
<script src="http://www.googletagservices.com/tag/static/google_services.js" type="text/javascript"></script>
...[SNIP]...
</ul>


<script type="text/javascript" src="http://platform.twitter.com/widgets.js"></script>
...[SNIP]...
<div id="bloomberg-horizontal-rbox">
<script type="text/javascript" src="http://cdn.taboolasyndication.com/libtrc/bloomberg/rbox.js?article"></script>
...[SNIP]...
</script>
<script type="text/javascript" src="http://pagead2.googlesyndication.com/pagead/show_ads.js">
</script>
...[SNIP]...
</script>


<script type="text/javascript" src="http://static.newstogram.com/bloomberg-v3/js/histogram.js"></script>
...[SNIP]...
</noscript>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/s_code_p.js" type="text/javascript"></script> <link href="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_style.css" media="screen" rel="stylesheet" type="text/css" /> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_engine_c.js" type="text/javascript"></script> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_conf_en-US_inline.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script type="text/javascript" src="http://js.revsci.net/gateway/gw.js?csid=K05539"></script>
...[SNIP]...

4.59. http://www.bloomberg.com/news/2010-11-19/fdic-seeks-lawyer-documents-as-federal-suits-loom-against-failed-banks.html  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.bloomberg.com
Path:   /news/2010-11-19/fdic-seeks-lawyer-documents-as-federal-suits-loom-against-failed-banks.html

Issue detail

The response dynamically includes the following scripts from other domains:

Request

GET /news/2010-11-19/fdic-seeks-lawyer-documents-as-federal-suits-loom-against-failed-banks.html HTTP/1.1
Host: www.bloomberg.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmv=30057196.|3=opt=no-opt=1,; s_sess=%20s_ria%3Dflash%257CSilverlight%25204.0%3B%20s_campaign%3Dcof_2%3B%20s_cc%3Dtrue%3B%20ev1%3Dtv%253Ahome%3B%20s_sq%3D%3B; __utmz=30057196.1290273703.1.1.utmcsr=s0.2mdn.net|utmccn=(referral)|utmcmd=referral|utmcct=/1797755/Coffee_v1_300x250.swf; path_cookie=_news; BT=; oo_int_hit=1; oo_int_percent=0; rsi_segs=; s_vi=[CS]v1|267401DC851D2580-4000012F803267BB[CE]; OAX=rnneEkzoA7IACz4K; __utma=30057196.685584106.1290273703.1290273703.1290273703.1; __utmc=30057196; RMFD=011PJr8MO1021wJe; __utmb=30057196.3.9.1290273791381; opt=no-opt;

Response

HTTP/1.1 200 OK
Server: Sun-Java-System-Web-Server/7.0
ETag: "cc4c4a34d6a35c60319956fcc8bae3e8"
X-runtime: 22
Content-Type: text/html; charset=utf-8
Proxy-agent: Sun-Java-System-Web-Server/7.0
Cache-Control: private, max-age=14
Date: Sat, 20 Nov 2010 18:20:47 GMT
Connection: close
Connection: Transfer-Encoding
Content-Length: 52003

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN"
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xmlns:og="http://opengraphprotocol.org/sc
...[SNIP]...
</script>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/main-min.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/ab-min.js" type="text/javascript"></script>
...[SNIP]...
<body class="news story">
<script src="http://www.googletagservices.com/tag/static/google_services.js" type="text/javascript"></script>
...[SNIP]...
</ul>


<script type="text/javascript" src="http://platform.twitter.com/widgets.js"></script>
...[SNIP]...
<div id="bloomberg-horizontal-rbox">
<script type="text/javascript" src="http://cdn.taboolasyndication.com/libtrc/bloomberg/rbox.js?article"></script>
...[SNIP]...
</script>
<script type="text/javascript" src="http://pagead2.googlesyndication.com/pagead/show_ads.js">
</script>
...[SNIP]...
</script>


<script type="text/javascript" src="http://static.newstogram.com/bloomberg-v3/js/histogram.js"></script>
...[SNIP]...
</noscript>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/s_code_p.js" type="text/javascript"></script> <link href="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_style.css" media="screen" rel="stylesheet" type="text/css" /> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_engine_c.js" type="text/javascript"></script> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_conf_en-US_inline.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script type="text/javascript" src="http://js.revsci.net/gateway/gw.js?csid=K05539"></script>
...[SNIP]...

4.60. http://www.bloomberg.com/news/2010-11-19/federated-replaces-market-opportunity-manager-lehman-with-noland.html  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.bloomberg.com
Path:   /news/2010-11-19/federated-replaces-market-opportunity-manager-lehman-with-noland.html

Issue detail

The response dynamically includes the following scripts from other domains:

Request

GET /news/2010-11-19/federated-replaces-market-opportunity-manager-lehman-with-noland.html HTTP/1.1
Host: www.bloomberg.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmv=30057196.|3=opt=no-opt=1,; s_sess=%20s_ria%3Dflash%257CSilverlight%25204.0%3B%20s_campaign%3Dcof_2%3B%20s_cc%3Dtrue%3B%20ev1%3Dtv%253Ahome%3B%20s_sq%3D%3B; __utmz=30057196.1290273703.1.1.utmcsr=s0.2mdn.net|utmccn=(referral)|utmcmd=referral|utmcct=/1797755/Coffee_v1_300x250.swf; path_cookie=_news; BT=; oo_int_hit=1; oo_int_percent=0; rsi_segs=; s_vi=[CS]v1|267401DC851D2580-4000012F803267BB[CE]; OAX=rnneEkzoA7IACz4K; __utma=30057196.685584106.1290273703.1290273703.1290273703.1; __utmc=30057196; RMFD=011PJr8MO1021wJe; __utmb=30057196.3.9.1290273791381; opt=no-opt;

Response

HTTP/1.1 200 OK
Server: Sun-Java-System-Web-Server/7.0
ETag: W/"06cf9ee3d2876ac944ff57bc9403a83d"
X-runtime: 1223
Content-Type: text/html; charset=utf-8
Proxy-agent: Sun-Java-System-Web-Server/7.0
Cache-Control: private, max-age=17
Date: Sat, 20 Nov 2010 18:20:57 GMT
Connection: close
Connection: Transfer-Encoding
Content-Length: 51584

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN"
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xmlns:og="http://opengraphprotocol.org/sc
...[SNIP]...
</script>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/main-min.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/ab-min.js" type="text/javascript"></script>
...[SNIP]...
<body class="news story">
<script src="http://www.googletagservices.com/tag/static/google_services.js" type="text/javascript"></script>
...[SNIP]...
</ul>


<script type="text/javascript" src="http://platform.twitter.com/widgets.js"></script>
...[SNIP]...
<div id="bloomberg-horizontal-rbox">
<script type="text/javascript" src="http://cdn.taboolasyndication.com/libtrc/bloomberg/rbox.js?article"></script>
...[SNIP]...
</script>
<script type="text/javascript" src="http://pagead2.googlesyndication.com/pagead/show_ads.js">
</script>
...[SNIP]...
</script>


<script type="text/javascript" src="http://static.newstogram.com/bloomberg-v3/js/histogram.js"></script>
...[SNIP]...
</noscript>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/s_code_p.js" type="text/javascript"></script> <link href="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_style.css" media="screen" rel="stylesheet" type="text/css" /> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_engine_c.js" type="text/javascript"></script> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_conf_en-US_inline.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script type="text/javascript" src="http://js.revsci.net/gateway/gw.js?csid=K05539"></script>
...[SNIP]...

4.61. http://www.bloomberg.com/news/2010-11-19/federer-says-regaining-no-1-tennis-ranking-from-nadal-will-be-difficult-.html  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.bloomberg.com
Path:   /news/2010-11-19/federer-says-regaining-no-1-tennis-ranking-from-nadal-will-be-difficult-.html

Issue detail

The response dynamically includes the following scripts from other domains:

Request

GET /news/2010-11-19/federer-says-regaining-no-1-tennis-ranking-from-nadal-will-be-difficult-.html HTTP/1.1
Host: www.bloomberg.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmv=30057196.|3=opt=no-opt=1,; s_sess=%20s_ria%3Dflash%257CSilverlight%25204.0%3B%20s_campaign%3Dcof_2%3B%20s_cc%3Dtrue%3B%20ev1%3Dtv%253Ahome%3B%20s_sq%3D%3B; __utmz=30057196.1290273703.1.1.utmcsr=s0.2mdn.net|utmccn=(referral)|utmcmd=referral|utmcct=/1797755/Coffee_v1_300x250.swf; path_cookie=_news; BT=; oo_int_hit=1; oo_int_percent=0; rsi_segs=; s_vi=[CS]v1|267401DC851D2580-4000012F803267BB[CE]; OAX=rnneEkzoA7IACz4K; __utma=30057196.685584106.1290273703.1290273703.1290273703.1; __utmc=30057196; RMFD=011PJr8MO1021wJe; __utmb=30057196.3.9.1290273791381; opt=no-opt;

Response

HTTP/1.1 200 OK
Server: Sun-Java-System-Web-Server/7.0
ETag: W/"832de581d49f8dd77ac6e344b8e80255"
X-runtime: 533
Content-Type: text/html; charset=utf-8
Proxy-agent: Sun-Java-System-Web-Server/7.0
Cache-Control: private, max-age=2
Date: Sat, 20 Nov 2010 18:20:53 GMT
Connection: close
Connection: Transfer-Encoding
Content-Length: 49188

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN"
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xmlns:og="http://opengraphprotocol.org/sc
...[SNIP]...
</script>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/main-min.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/ab-min.js" type="text/javascript"></script>
...[SNIP]...
<body class="news story">
<script src="http://www.googletagservices.com/tag/static/google_services.js" type="text/javascript"></script>
...[SNIP]...
</ul>


<script type="text/javascript" src="http://platform.twitter.com/widgets.js"></script>
...[SNIP]...
<div id="bloomberg-horizontal-rbox">
<script type="text/javascript" src="http://cdn.taboolasyndication.com/libtrc/bloomberg/rbox.js?article"></script>
...[SNIP]...
</script>
<script type="text/javascript" src="http://pagead2.googlesyndication.com/pagead/show_ads.js">
</script>
...[SNIP]...
</script>


<script type="text/javascript" src="http://static.newstogram.com/bloomberg-v3/js/histogram.js"></script>
...[SNIP]...
</noscript>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/s_code_p.js" type="text/javascript"></script> <link href="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_style.css" media="screen" rel="stylesheet" type="text/css" /> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_engine_c.js" type="text/javascript"></script> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_conf_en-US_inline.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script type="text/javascript" src="http://js.revsci.net/gateway/gw.js?csid=K05539"></script>
...[SNIP]...

4.62. http://www.bloomberg.com/news/2010-11-19/fini-berlusconi-may-reconcile-before-key-vote-menia-says.html  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.bloomberg.com
Path:   /news/2010-11-19/fini-berlusconi-may-reconcile-before-key-vote-menia-says.html

Issue detail

The response dynamically includes the following scripts from other domains:

Request

GET /news/2010-11-19/fini-berlusconi-may-reconcile-before-key-vote-menia-says.html HTTP/1.1
Host: www.bloomberg.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmv=30057196.|3=opt=no-opt=1,; s_sess=%20s_ria%3Dflash%257CSilverlight%25204.0%3B%20s_campaign%3Dcof_2%3B%20s_cc%3Dtrue%3B%20ev1%3Dtv%253Ahome%3B%20s_sq%3D%3B; __utmz=30057196.1290273703.1.1.utmcsr=s0.2mdn.net|utmccn=(referral)|utmcmd=referral|utmcct=/1797755/Coffee_v1_300x250.swf; path_cookie=_news; BT=; oo_int_hit=1; oo_int_percent=0; rsi_segs=; s_vi=[CS]v1|267401DC851D2580-4000012F803267BB[CE]; OAX=rnneEkzoA7IACz4K; __utma=30057196.685584106.1290273703.1290273703.1290273703.1; __utmc=30057196; RMFD=011PJr8MO1021wJe; __utmb=30057196.3.9.1290273791381; opt=no-opt;

Response

HTTP/1.1 200 OK
Server: Sun-Java-System-Web-Server/7.0
ETag: W/"1458067032d900039d1136a1df1c6375"
X-runtime: 753
Content-Type: text/html; charset=utf-8
Proxy-agent: Sun-Java-System-Web-Server/7.0
Cache-Control: private, max-age=39
Date: Sat, 20 Nov 2010 18:20:52 GMT
Connection: close
Connection: Transfer-Encoding
Content-Length: 52920

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN"
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xmlns:og="http://opengraphprotocol.org/sc
...[SNIP]...
</script>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/main-min.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/ab-min.js" type="text/javascript"></script>
...[SNIP]...
<body class="news story">
<script src="http://www.googletagservices.com/tag/static/google_services.js" type="text/javascript"></script>
...[SNIP]...
</ul>


<script type="text/javascript" src="http://platform.twitter.com/widgets.js"></script>
...[SNIP]...
<div id="bloomberg-horizontal-rbox">
<script type="text/javascript" src="http://cdn.taboolasyndication.com/libtrc/bloomberg/rbox.js?article"></script>
...[SNIP]...
</script>
<script type="text/javascript" src="http://pagead2.googlesyndication.com/pagead/show_ads.js">
</script>
...[SNIP]...
</script>


<script type="text/javascript" src="http://static.newstogram.com/bloomberg-v3/js/histogram.js"></script>
...[SNIP]...
</noscript>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/s_code_p.js" type="text/javascript"></script> <link href="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_style.css" media="screen" rel="stylesheet" type="text/css" /> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_engine_c.js" type="text/javascript"></script> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_conf_en-US_inline.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script type="text/javascript" src="http://js.revsci.net/gateway/gw.js?csid=K05539"></script>
...[SNIP]...

4.63. http://www.bloomberg.com/news/2010-11-19/geithner-warns-republicans-against-politicizing-the-fed.html  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.bloomberg.com
Path:   /news/2010-11-19/geithner-warns-republicans-against-politicizing-the-fed.html

Issue detail

The response dynamically includes the following scripts from other domains:

Request

GET /news/2010-11-19/geithner-warns-republicans-against-politicizing-the-fed.html HTTP/1.1
Host: www.bloomberg.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmv=30057196.|3=opt=no-opt=1,; s_sess=%20s_ria%3Dflash%257CSilverlight%25204.0%3B%20s_campaign%3Dcof_2%3B%20s_cc%3Dtrue%3B%20ev1%3Dtv%253Ahome%3B%20s_sq%3D%3B; __utmz=30057196.1290273703.1.1.utmcsr=s0.2mdn.net|utmccn=(referral)|utmcmd=referral|utmcct=/1797755/Coffee_v1_300x250.swf; path_cookie=_news; BT=; oo_int_hit=1; oo_int_percent=0; rsi_segs=; s_vi=[CS]v1|267401DC851D2580-4000012F803267BB[CE]; OAX=rnneEkzoA7IACz4K; __utma=30057196.685584106.1290273703.1290273703.1290273703.1; __utmc=30057196; RMFD=011PJr8MO1021wJe; __utmb=30057196.3.9.1290273791381; opt=no-opt;

Response

HTTP/1.1 200 OK
Server: Sun-Java-System-Web-Server/7.0
ETag: W/"df5faca6aa79ab8917c89ded3856ffb0"
X-runtime: 613
Content-Type: text/html; charset=utf-8
Proxy-agent: Sun-Java-System-Web-Server/7.0
Cache-Control: private, max-age=44
Date: Sat, 20 Nov 2010 18:20:42 GMT
Connection: close
Connection: Transfer-Encoding
Content-Length: 54040

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN"
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xmlns:og="http://opengraphprotocol.org/sc
...[SNIP]...
</script>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/main-min.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/ab-min.js" type="text/javascript"></script>
...[SNIP]...
<body class="news story">
<script src="http://www.googletagservices.com/tag/static/google_services.js" type="text/javascript"></script>
...[SNIP]...
</ul>


<script type="text/javascript" src="http://platform.twitter.com/widgets.js"></script>
...[SNIP]...
<div id="bloomberg-horizontal-rbox">
<script type="text/javascript" src="http://cdn.taboolasyndication.com/libtrc/bloomberg/rbox.js?article"></script>
...[SNIP]...
</script>
<script type="text/javascript" src="http://pagead2.googlesyndication.com/pagead/show_ads.js">
</script>
...[SNIP]...
</script>


<script type="text/javascript" src="http://static.newstogram.com/bloomberg-v3/js/histogram.js"></script>
...[SNIP]...
</noscript>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/s_code_p.js" type="text/javascript"></script> <link href="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_style.css" media="screen" rel="stylesheet" type="text/css" /> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_engine_c.js" type="text/javascript"></script> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_conf_en-US_inline.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script type="text/javascript" src="http://js.revsci.net/gateway/gw.js?csid=K05539"></script>
...[SNIP]...

4.64. http://www.bloomberg.com/news/2010-11-19/groupon-said-to-weigh-sale-to-google-against-raising-funds-for-coupon-site.html  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.bloomberg.com
Path:   /news/2010-11-19/groupon-said-to-weigh-sale-to-google-against-raising-funds-for-coupon-site.html

Issue detail

The response dynamically includes the following scripts from other domains:

Request

GET /news/2010-11-19/groupon-said-to-weigh-sale-to-google-against-raising-funds-for-coupon-site.html HTTP/1.1
Host: www.bloomberg.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmv=30057196.|3=opt=no-opt=1,; s_sess=%20s_ria%3Dflash%257CSilverlight%25204.0%3B%20s_campaign%3Dcof_2%3B%20s_cc%3Dtrue%3B%20ev1%3Dtv%253Ahome%3B%20s_sq%3D%3B; __utmz=30057196.1290273703.1.1.utmcsr=s0.2mdn.net|utmccn=(referral)|utmcmd=referral|utmcct=/1797755/Coffee_v1_300x250.swf; path_cookie=_news; BT=; oo_int_hit=1; oo_int_percent=0; rsi_segs=; s_vi=[CS]v1|267401DC851D2580-4000012F803267BB[CE]; OAX=rnneEkzoA7IACz4K; __utma=30057196.685584106.1290273703.1290273703.1290273703.1; __utmc=30057196; RMFD=011PJr8MO1021wJe; __utmb=30057196.3.9.1290273791381; opt=no-opt;

Response

HTTP/1.1 200 OK
Server: Sun-Java-System-Web-Server/7.0
ETag: W/"5b9670e7a59d436cd27bc85c7f495840"
X-runtime: 20
Content-Type: text/html; charset=utf-8
Proxy-agent: Sun-Java-System-Web-Server/7.0
Cache-Control: private, max-age=1
Date: Sat, 20 Nov 2010 18:21:05 GMT
Connection: close
Connection: Transfer-Encoding
Content-Length: 54503

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN"
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xmlns:og="http://opengraphprotocol.org/sc
...[SNIP]...
</script>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/main-min.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/ab-min.js" type="text/javascript"></script>
...[SNIP]...
<body class="news story">
<script src="http://www.googletagservices.com/tag/static/google_services.js" type="text/javascript"></script>
...[SNIP]...
</ul>


<script type="text/javascript" src="http://platform.twitter.com/widgets.js"></script>
...[SNIP]...
<div id="bloomberg-horizontal-rbox">
<script type="text/javascript" src="http://cdn.taboolasyndication.com/libtrc/bloomberg/rbox.js?article"></script>
...[SNIP]...
</script>
<script type="text/javascript" src="http://pagead2.googlesyndication.com/pagead/show_ads.js">
</script>
...[SNIP]...
</script>


<script type="text/javascript" src="http://static.newstogram.com/bloomberg-v3/js/histogram.js"></script>
...[SNIP]...
</noscript>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/s_code_p.js" type="text/javascript"></script> <link href="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_style.css" media="screen" rel="stylesheet" type="text/css" /> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_engine_c.js" type="text/javascript"></script> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_conf_en-US_inline.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script type="text/javascript" src="http://js.revsci.net/gateway/gw.js?csid=K05539"></script>
...[SNIP]...

4.65. http://www.bloomberg.com/news/2010-11-19/hong-kong-said-to-plan-further-steps-to-cool-property-market-stocks-drop.html  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.bloomberg.com
Path:   /news/2010-11-19/hong-kong-said-to-plan-further-steps-to-cool-property-market-stocks-drop.html

Issue detail

The response dynamically includes the following scripts from other domains:

Request

GET /news/2010-11-19/hong-kong-said-to-plan-further-steps-to-cool-property-market-stocks-drop.html HTTP/1.1
Host: www.bloomberg.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmv=30057196.|3=opt=no-opt=1,; s_sess=%20s_ria%3Dflash%257CSilverlight%25204.0%3B%20s_campaign%3Dcof_2%3B%20s_cc%3Dtrue%3B%20ev1%3Dtv%253Ahome%3B%20s_sq%3D%3B; __utmz=30057196.1290273703.1.1.utmcsr=s0.2mdn.net|utmccn=(referral)|utmcmd=referral|utmcct=/1797755/Coffee_v1_300x250.swf; path_cookie=_news; BT=; oo_int_hit=1; oo_int_percent=0; rsi_segs=; s_vi=[CS]v1|267401DC851D2580-4000012F803267BB[CE]; OAX=rnneEkzoA7IACz4K; __utma=30057196.685584106.1290273703.1290273703.1290273703.1; __utmc=30057196; RMFD=011PJr8MO1021wJe; __utmb=30057196.3.9.1290273791381; opt=no-opt;

Response

HTTP/1.1 200 OK
Server: Sun-Java-System-Web-Server/7.0
ETag: W/"bec3ffdb344fcd6a5f9f45ff92be86f6"
X-runtime: 24
Content-Type: text/html; charset=utf-8
Proxy-agent: Sun-Java-System-Web-Server/7.0
Cache-Control: private, max-age=23
Date: Sat, 20 Nov 2010 18:20:45 GMT
Connection: close
Connection: Transfer-Encoding
Content-Length: 55567

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN"
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xmlns:og="http://opengraphprotocol.org/sc
...[SNIP]...
</script>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/main-min.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/ab-min.js" type="text/javascript"></script>
...[SNIP]...
<body class="news story">
<script src="http://www.googletagservices.com/tag/static/google_services.js" type="text/javascript"></script>
...[SNIP]...
</ul>


<script type="text/javascript" src="http://platform.twitter.com/widgets.js"></script>
...[SNIP]...
<div id="bloomberg-horizontal-rbox">
<script type="text/javascript" src="http://cdn.taboolasyndication.com/libtrc/bloomberg/rbox.js?article"></script>
...[SNIP]...
</script>
<script type="text/javascript" src="http://pagead2.googlesyndication.com/pagead/show_ads.js">
</script>
...[SNIP]...
</script>


<script type="text/javascript" src="http://static.newstogram.com/bloomberg-v3/js/histogram.js"></script>
...[SNIP]...
</noscript>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/s_code_p.js" type="text/javascript"></script> <link href="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_style.css" media="screen" rel="stylesheet" type="text/css" /> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_engine_c.js" type="text/javascript"></script> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_conf_en-US_inline.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script type="text/javascript" src="http://js.revsci.net/gateway/gw.js?csid=K05539"></script>
...[SNIP]...

4.66. http://www.bloomberg.com/news/2010-11-19/how-brazil-s-rousseff-can-keep-markets-sane-alexandre-marinis.html  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.bloomberg.com
Path:   /news/2010-11-19/how-brazil-s-rousseff-can-keep-markets-sane-alexandre-marinis.html

Issue detail

The response dynamically includes the following scripts from other domains:

Request

GET /news/2010-11-19/how-brazil-s-rousseff-can-keep-markets-sane-alexandre-marinis.html HTTP/1.1
Host: www.bloomberg.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmv=30057196.|3=opt=no-opt=1,; s_sess=%20s_ria%3Dflash%257CSilverlight%25204.0%3B%20s_campaign%3Dcof_2%3B%20s_cc%3Dtrue%3B%20ev1%3Dtv%253Ahome%3B%20s_sq%3D%3B; __utmz=30057196.1290273703.1.1.utmcsr=s0.2mdn.net|utmccn=(referral)|utmcmd=referral|utmcct=/1797755/Coffee_v1_300x250.swf; path_cookie=_news; BT=; oo_int_hit=1; oo_int_percent=0; rsi_segs=; s_vi=[CS]v1|267401DC851D2580-4000012F803267BB[CE]; OAX=rnneEkzoA7IACz4K; __utma=30057196.685584106.1290273703.1290273703.1290273703.1; __utmc=30057196; RMFD=011PJr8MO1021wJe; __utmb=30057196.3.9.1290273791381; opt=no-opt;

Response

HTTP/1.1 200 OK
Server: Sun-Java-System-Web-Server/7.0
ETag: W/"862c4b5f641d335000fa709eba49d150"
X-runtime: 21
Content-Type: text/html; charset=utf-8
Proxy-agent: Sun-Java-System-Web-Server/7.0
Cache-Control: private, max-age=22
Date: Sat, 20 Nov 2010 18:20:43 GMT
Connection: close
Connection: Transfer-Encoding
Content-Length: 54357

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN"
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xmlns:og="http://opengraphprotocol.org/sc
...[SNIP]...
</script>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/main-min.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/ab-min.js" type="text/javascript"></script>
...[SNIP]...
<body class="news story">
<script src="http://www.googletagservices.com/tag/static/google_services.js" type="text/javascript"></script>
...[SNIP]...
</ul>


<script type="text/javascript" src="http://platform.twitter.com/widgets.js"></script>
...[SNIP]...
<div id="bloomberg-horizontal-rbox">
<script type="text/javascript" src="http://cdn.taboolasyndication.com/libtrc/bloomberg/rbox.js?article"></script>
...[SNIP]...
</script>
<script type="text/javascript" src="http://pagead2.googlesyndication.com/pagead/show_ads.js">
</script>
...[SNIP]...
</script>


<script type="text/javascript" src="http://static.newstogram.com/bloomberg-v3/js/histogram.js"></script>
...[SNIP]...
</noscript>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/s_code_p.js" type="text/javascript"></script> <link href="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_style.css" media="screen" rel="stylesheet" type="text/css" /> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_engine_c.js" type="text/javascript"></script> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_conf_en-US_inline.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script type="text/javascript" src="http://js.revsci.net/gateway/gw.js?csid=K05539"></script>
...[SNIP]...

4.67. http://www.bloomberg.com/news/2010-11-19/ireland-crisis-might-give-china-break-it-seeks-simon-johnson.html  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.bloomberg.com
Path:   /news/2010-11-19/ireland-crisis-might-give-china-break-it-seeks-simon-johnson.html

Issue detail

The response dynamically includes the following scripts from other domains:

Request

GET /news/2010-11-19/ireland-crisis-might-give-china-break-it-seeks-simon-johnson.html HTTP/1.1
Host: www.bloomberg.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmv=30057196.|3=opt=no-opt=1,; s_sess=%20s_ria%3Dflash%257CSilverlight%25204.0%3B%20s_campaign%3Dcof_2%3B%20s_cc%3Dtrue%3B%20ev1%3Dtv%253Ahome%3B%20s_sq%3D%3B; __utmz=30057196.1290273703.1.1.utmcsr=s0.2mdn.net|utmccn=(referral)|utmcmd=referral|utmcct=/1797755/Coffee_v1_300x250.swf; path_cookie=_news; BT=; oo_int_hit=1; oo_int_percent=0; rsi_segs=; s_vi=[CS]v1|267401DC851D2580-4000012F803267BB[CE]; OAX=rnneEkzoA7IACz4K; __utma=30057196.685584106.1290273703.1290273703.1290273703.1; __utmc=30057196; RMFD=011PJr8MO1021wJe; __utmb=30057196.3.9.1290273791381; opt=no-opt;

Response

HTTP/1.1 200 OK
Server: Sun-Java-System-Web-Server/7.0
ETag: W/"9af3cc08c52b18f093a0cae7ce151050"
X-runtime: 27
Content-Type: text/html; charset=utf-8
Proxy-agent: Sun-Java-System-Web-Server/7.0
Cache-Control: private, max-age=20
Date: Sat, 20 Nov 2010 18:20:49 GMT
Connection: close
Connection: Transfer-Encoding
Content-Length: 54187

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN"
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xmlns:og="http://opengraphprotocol.org/sc
...[SNIP]...
</script>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/main-min.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/ab-min.js" type="text/javascript"></script>
...[SNIP]...
<body class="news story">
<script src="http://www.googletagservices.com/tag/static/google_services.js" type="text/javascript"></script>
...[SNIP]...
</ul>


<script type="text/javascript" src="http://platform.twitter.com/widgets.js"></script>
...[SNIP]...
<div id="bloomberg-horizontal-rbox">
<script type="text/javascript" src="http://cdn.taboolasyndication.com/libtrc/bloomberg/rbox.js?article"></script>
...[SNIP]...
</script>
<script type="text/javascript" src="http://pagead2.googlesyndication.com/pagead/show_ads.js">
</script>
...[SNIP]...
</script>


<script type="text/javascript" src="http://static.newstogram.com/bloomberg-v3/js/histogram.js"></script>
...[SNIP]...
</noscript>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/s_code_p.js" type="text/javascript"></script> <link href="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_style.css" media="screen" rel="stylesheet" type="text/css" /> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_engine_c.js" type="text/javascript"></script> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_conf_en-US_inline.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script type="text/javascript" src="http://js.revsci.net/gateway/gw.js?csid=K05539"></script>
...[SNIP]...

4.68. http://www.bloomberg.com/news/2010-11-19/lazard-s-rohatyn-shocked-by-lehman-blasts-rampant-greed-.html  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.bloomberg.com
Path:   /news/2010-11-19/lazard-s-rohatyn-shocked-by-lehman-blasts-rampant-greed-.html

Issue detail

The response dynamically includes the following scripts from other domains:

Request

GET /news/2010-11-19/lazard-s-rohatyn-shocked-by-lehman-blasts-rampant-greed-.html HTTP/1.1
Host: www.bloomberg.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmv=30057196.|3=opt=no-opt=1,; s_sess=%20s_ria%3Dflash%257CSilverlight%25204.0%3B%20s_campaign%3Dcof_2%3B%20s_cc%3Dtrue%3B%20ev1%3Dtv%253Ahome%3B%20s_sq%3D%3B; __utmz=30057196.1290273703.1.1.utmcsr=s0.2mdn.net|utmccn=(referral)|utmcmd=referral|utmcct=/1797755/Coffee_v1_300x250.swf; path_cookie=_news; BT=; oo_int_hit=1; oo_int_percent=0; rsi_segs=; s_vi=[CS]v1|267401DC851D2580-4000012F803267BB[CE]; OAX=rnneEkzoA7IACz4K; __utma=30057196.685584106.1290273703.1290273703.1290273703.1; __utmc=30057196; RMFD=011PJr8MO1021wJe; __utmb=30057196.3.9.1290273791381; opt=no-opt;

Response

HTTP/1.1 200 OK
Server: Sun-Java-System-Web-Server/7.0
ETag: W/"68aefeb5c6a86f5d34ab9d215a418497"
X-runtime: 1392
Content-Type: text/html; charset=utf-8
Proxy-agent: Sun-Java-System-Web-Server/7.0
Cache-Control: private, max-age=22
Date: Sat, 20 Nov 2010 18:21:00 GMT
Connection: close
Connection: Transfer-Encoding
Content-Length: 56728

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN"
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xmlns:og="http://opengraphprotocol.org/sc
...[SNIP]...
</script>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/main-min.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/ab-min.js" type="text/javascript"></script>
...[SNIP]...
<body class="news story">
<script src="http://www.googletagservices.com/tag/static/google_services.js" type="text/javascript"></script>
...[SNIP]...
</ul>


<script type="text/javascript" src="http://platform.twitter.com/widgets.js"></script>
...[SNIP]...
<div id="bloomberg-horizontal-rbox">
<script type="text/javascript" src="http://cdn.taboolasyndication.com/libtrc/bloomberg/rbox.js?article"></script>
...[SNIP]...
</script>
<script type="text/javascript" src="http://pagead2.googlesyndication.com/pagead/show_ads.js">
</script>
...[SNIP]...
</script>


<script type="text/javascript" src="http://static.newstogram.com/bloomberg-v3/js/histogram.js"></script>
...[SNIP]...
</noscript>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/s_code_p.js" type="text/javascript"></script> <link href="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_style.css" media="screen" rel="stylesheet" type="text/css" /> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_engine_c.js" type="text/javascript"></script> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_conf_en-US_inline.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script type="text/javascript" src="http://js.revsci.net/gateway/gw.js?csid=K05539"></script>
...[SNIP]...

4.69. http://www.bloomberg.com/news/2010-11-19/nigerian-central-bank-may-keep-key-rate-at-6-25-in-bid-to-slow-inflation.html  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.bloomberg.com
Path:   /news/2010-11-19/nigerian-central-bank-may-keep-key-rate-at-6-25-in-bid-to-slow-inflation.html

Issue detail

The response dynamically includes the following scripts from other domains:

Request

GET /news/2010-11-19/nigerian-central-bank-may-keep-key-rate-at-6-25-in-bid-to-slow-inflation.html HTTP/1.1
Host: www.bloomberg.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmv=30057196.|3=opt=no-opt=1,; s_sess=%20s_ria%3Dflash%257CSilverlight%25204.0%3B%20s_campaign%3Dcof_2%3B%20s_cc%3Dtrue%3B%20ev1%3Dtv%253Ahome%3B%20s_sq%3D%3B; __utmz=30057196.1290273703.1.1.utmcsr=s0.2mdn.net|utmccn=(referral)|utmcmd=referral|utmcct=/1797755/Coffee_v1_300x250.swf; path_cookie=_news; BT=; oo_int_hit=1; oo_int_percent=0; rsi_segs=; s_vi=[CS]v1|267401DC851D2580-4000012F803267BB[CE]; OAX=rnneEkzoA7IACz4K; __utma=30057196.685584106.1290273703.1290273703.1290273703.1; __utmc=30057196; RMFD=011PJr8MO1021wJe; __utmb=30057196.3.9.1290273791381; opt=no-opt;

Response

HTTP/1.1 200 OK
Server: Sun-Java-System-Web-Server/7.0
ETag: W/"72037b6c9c9b8223f065bb48938509ce"
X-runtime: 516
Content-Type: text/html; charset=utf-8
Proxy-agent: Sun-Java-System-Web-Server/7.0
Cache-Control: private, max-age=43
Date: Sat, 20 Nov 2010 18:21:07 GMT
Connection: close
Connection: Transfer-Encoding
Content-Length: 49208

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN"
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xmlns:og="http://opengraphprotocol.org/sc
...[SNIP]...
</script>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/main-min.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/ab-min.js" type="text/javascript"></script>
...[SNIP]...
<body class="news story">
<script src="http://www.googletagservices.com/tag/static/google_services.js" type="text/javascript"></script>
...[SNIP]...
</ul>


<script type="text/javascript" src="http://platform.twitter.com/widgets.js"></script>
...[SNIP]...
<div id="bloomberg-horizontal-rbox">
<script type="text/javascript" src="http://cdn.taboolasyndication.com/libtrc/bloomberg/rbox.js?article"></script>
...[SNIP]...
</script>
<script type="text/javascript" src="http://pagead2.googlesyndication.com/pagead/show_ads.js">
</script>
...[SNIP]...
</script>


<script type="text/javascript" src="http://static.newstogram.com/bloomberg-v3/js/histogram.js"></script>
...[SNIP]...
</noscript>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/s_code_p.js" type="text/javascript"></script> <link href="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_style.css" media="screen" rel="stylesheet" type="text/css" /> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_engine_c.js" type="text/javascript"></script> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_conf_en-US_inline.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script type="text/javascript" src="http://js.revsci.net/gateway/gw.js?csid=K05539"></script>
...[SNIP]...

4.70. http://www.bloomberg.com/news/2010-11-19/private-placements-luring-unsophisticated-investors-with-nowhere-to-go-.html  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.bloomberg.com
Path:   /news/2010-11-19/private-placements-luring-unsophisticated-investors-with-nowhere-to-go-.html

Issue detail

The response dynamically includes the following scripts from other domains:

Request

GET /news/2010-11-19/private-placements-luring-unsophisticated-investors-with-nowhere-to-go-.html HTTP/1.1
Host: www.bloomberg.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmv=30057196.|3=opt=no-opt=1,; s_sess=%20s_ria%3Dflash%257CSilverlight%25204.0%3B%20s_campaign%3Dcof_2%3B%20s_cc%3Dtrue%3B%20ev1%3Dtv%253Ahome%3B%20s_sq%3D%3B; __utmz=30057196.1290273703.1.1.utmcsr=s0.2mdn.net|utmccn=(referral)|utmcmd=referral|utmcct=/1797755/Coffee_v1_300x250.swf; path_cookie=_news; BT=; oo_int_hit=1; oo_int_percent=0; rsi_segs=; s_vi=[CS]v1|267401DC851D2580-4000012F803267BB[CE]; OAX=rnneEkzoA7IACz4K; __utma=30057196.685584106.1290273703.1290273703.1290273703.1; __utmc=30057196; RMFD=011PJr8MO1021wJe; __utmb=30057196.3.9.1290273791381; opt=no-opt;

Response

HTTP/1.1 200 OK
Server: Sun-Java-System-Web-Server/7.0
ETag: W/"2d5ea3d91c53c1f612394ac98abae6e7"
X-runtime: 646
Content-Type: text/html; charset=utf-8
Proxy-agent: Sun-Java-System-Web-Server/7.0
Cache-Control: private, max-age=19
Date: Sat, 20 Nov 2010 18:20:53 GMT
Connection: close
Connection: Transfer-Encoding
Content-Length: 62760

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN"
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xmlns:og="http://opengraphprotocol.org/sc
...[SNIP]...
</script>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/main-min.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/ab-min.js" type="text/javascript"></script>
...[SNIP]...
<body class="news story">
<script src="http://www.googletagservices.com/tag/static/google_services.js" type="text/javascript"></script>
...[SNIP]...
</ul>


<script type="text/javascript" src="http://platform.twitter.com/widgets.js"></script>
...[SNIP]...
<div id="bloomberg-horizontal-rbox">
<script type="text/javascript" src="http://cdn.taboolasyndication.com/libtrc/bloomberg/rbox.js?article"></script>
...[SNIP]...
</div>


<script type="text/javascript" src="http://jlinks.industrybrains.com/jsct?sid=942&amp;ct=BLOOMBERG_PERSONAL_FINANCE&amp;tr=BLOOMBERG_PF_ARTICLES&amp;num=5&amp;layt=1&amp;fmt=simp"></script>
...[SNIP]...
</script>
<script type="text/javascript" src="http://pagead2.googlesyndication.com/pagead/show_ads.js">
</script>
...[SNIP]...
</script>


<script type="text/javascript" src="http://static.newstogram.com/bloomberg-v3/js/histogram.js"></script>
...[SNIP]...
</noscript>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/s_code_p.js" type="text/javascript"></script> <link href="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_style.css" media="screen" rel="stylesheet" type="text/css" /> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_engine_c.js" type="text/javascript"></script> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_conf_en-US_inline.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script type="text/javascript" src="http://js.revsci.net/gateway/gw.js?csid=K05539"></script>
...[SNIP]...

4.71. http://www.bloomberg.com/news/2010-11-19/redskins-owner-devine-sues-gillett-for-117-million-from-liverpool-debt.html  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.bloomberg.com
Path:   /news/2010-11-19/redskins-owner-devine-sues-gillett-for-117-million-from-liverpool-debt.html

Issue detail

The response dynamically includes the following scripts from other domains:

Request

GET /news/2010-11-19/redskins-owner-devine-sues-gillett-for-117-million-from-liverpool-debt.html HTTP/1.1
Host: www.bloomberg.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmv=30057196.|3=opt=no-opt=1,; s_sess=%20s_ria%3Dflash%257CSilverlight%25204.0%3B%20s_campaign%3Dcof_2%3B%20s_cc%3Dtrue%3B%20ev1%3Dtv%253Ahome%3B%20s_sq%3D%3B; __utmz=30057196.1290273703.1.1.utmcsr=s0.2mdn.net|utmccn=(referral)|utmcmd=referral|utmcct=/1797755/Coffee_v1_300x250.swf; path_cookie=_news; BT=; oo_int_hit=1; oo_int_percent=0; rsi_segs=; s_vi=[CS]v1|267401DC851D2580-4000012F803267BB[CE]; OAX=rnneEkzoA7IACz4K; __utma=30057196.685584106.1290273703.1290273703.1290273703.1; __utmc=30057196; RMFD=011PJr8MO1021wJe; __utmb=30057196.3.9.1290273791381; opt=no-opt;

Response

HTTP/1.1 200 OK
Server: Sun-Java-System-Web-Server/7.0
ETag: W/"f7c88926755a47b3c10ba11288704ef2"
X-runtime: 484
Content-Type: text/html; charset=utf-8
Proxy-agent: Sun-Java-System-Web-Server/7.0
Cache-Control: private, max-age=8
Date: Sat, 20 Nov 2010 18:20:54 GMT
Connection: close
Connection: Transfer-Encoding
Content-Length: 49450

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN"
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xmlns:og="http://opengraphprotocol.org/sc
...[SNIP]...
</script>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/main-min.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/ab-min.js" type="text/javascript"></script>
...[SNIP]...
<body class="news story">
<script src="http://www.googletagservices.com/tag/static/google_services.js" type="text/javascript"></script>
...[SNIP]...
</ul>


<script type="text/javascript" src="http://platform.twitter.com/widgets.js"></script>
...[SNIP]...
<div id="bloomberg-horizontal-rbox">
<script type="text/javascript" src="http://cdn.taboolasyndication.com/libtrc/bloomberg/rbox.js?article"></script>
...[SNIP]...
</script>
<script type="text/javascript" src="http://pagead2.googlesyndication.com/pagead/show_ads.js">
</script>
...[SNIP]...
</script>


<script type="text/javascript" src="http://static.newstogram.com/bloomberg-v3/js/histogram.js"></script>
...[SNIP]...
</noscript>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/s_code_p.js" type="text/javascript"></script> <link href="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_style.css" media="screen" rel="stylesheet" type="text/css" /> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_engine_c.js" type="text/javascript"></script> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_conf_en-US_inline.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script type="text/javascript" src="http://js.revsci.net/gateway/gw.js?csid=K05539"></script>
...[SNIP]...

4.72. http://www.bloomberg.com/news/2010-11-19/reid-pelosi-plan-votes-on-extending-bush-era-income-tax-cuts.html  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.bloomberg.com
Path:   /news/2010-11-19/reid-pelosi-plan-votes-on-extending-bush-era-income-tax-cuts.html

Issue detail

The response dynamically includes the following scripts from other domains:

Request

GET /news/2010-11-19/reid-pelosi-plan-votes-on-extending-bush-era-income-tax-cuts.html HTTP/1.1
Host: www.bloomberg.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmv=30057196.|3=opt=no-opt=1,; s_sess=%20s_ria%3Dflash%257CSilverlight%25204.0%3B%20s_campaign%3Dcof_2%3B%20s_cc%3Dtrue%3B%20ev1%3Dtv%253Ahome%3B%20s_sq%3D%3B; __utmz=30057196.1290273703.1.1.utmcsr=s0.2mdn.net|utmccn=(referral)|utmcmd=referral|utmcct=/1797755/Coffee_v1_300x250.swf; path_cookie=_news; BT=; oo_int_hit=1; oo_int_percent=0; rsi_segs=; s_vi=[CS]v1|267401DC851D2580-4000012F803267BB[CE]; OAX=rnneEkzoA7IACz4K; __utma=30057196.685584106.1290273703.1290273703.1290273703.1; __utmc=30057196; RMFD=011PJr8MO1021wJe; __utmb=30057196.3.9.1290273791381; opt=no-opt;

Response

HTTP/1.1 200 OK
Server: Sun-Java-System-Web-Server/7.0
ETag: W/"802dc5169d9bd954bf123cbcbd2a7659"
X-runtime: 602
Content-Type: text/html; charset=utf-8
Proxy-agent: Sun-Java-System-Web-Server/7.0
Cache-Control: private, max-age=19
Date: Sat, 20 Nov 2010 18:20:52 GMT
Connection: close
Connection: Transfer-Encoding
Content-Length: 57848

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN"
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xmlns:og="http://opengraphprotocol.org/sc
...[SNIP]...
</script>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/main-min.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/ab-min.js" type="text/javascript"></script>
...[SNIP]...
<body class="news story">
<script src="http://www.googletagservices.com/tag/static/google_services.js" type="text/javascript"></script>
...[SNIP]...
</ul>


<script type="text/javascript" src="http://platform.twitter.com/widgets.js"></script>
...[SNIP]...
<div id="bloomberg-horizontal-rbox">
<script type="text/javascript" src="http://cdn.taboolasyndication.com/libtrc/bloomberg/rbox.js?article"></script>
...[SNIP]...
</script>
<script type="text/javascript" src="http://pagead2.googlesyndication.com/pagead/show_ads.js">
</script>
...[SNIP]...
</script>


<script type="text/javascript" src="http://static.newstogram.com/bloomberg-v3/js/histogram.js"></script>
...[SNIP]...
</noscript>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/s_code_p.js" type="text/javascript"></script> <link href="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_style.css" media="screen" rel="stylesheet" type="text/css" /> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_engine_c.js" type="text/javascript"></script> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_conf_en-US_inline.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script type="text/javascript" src="http://js.revsci.net/gateway/gw.js?csid=K05539"></script>
...[SNIP]...

4.73. http://www.bloomberg.com/news/2010-11-19/sandoval-quits-santos-group-following-panamericano-s-1-5-billion-bailout.html  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.bloomberg.com
Path:   /news/2010-11-19/sandoval-quits-santos-group-following-panamericano-s-1-5-billion-bailout.html

Issue detail

The response dynamically includes the following scripts from other domains:

Request

GET /news/2010-11-19/sandoval-quits-santos-group-following-panamericano-s-1-5-billion-bailout.html HTTP/1.1
Host: www.bloomberg.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmv=30057196.|3=opt=no-opt=1,; s_sess=%20s_ria%3Dflash%257CSilverlight%25204.0%3B%20s_campaign%3Dcof_2%3B%20s_cc%3Dtrue%3B%20ev1%3Dtv%253Ahome%3B%20s_sq%3D%3B; __utmz=30057196.1290273703.1.1.utmcsr=s0.2mdn.net|utmccn=(referral)|utmcmd=referral|utmcct=/1797755/Coffee_v1_300x250.swf; path_cookie=_news; BT=; oo_int_hit=1; oo_int_percent=0; rsi_segs=; s_vi=[CS]v1|267401DC851D2580-4000012F803267BB[CE]; OAX=rnneEkzoA7IACz4K; __utma=30057196.685584106.1290273703.1290273703.1290273703.1; __utmc=30057196; RMFD=011PJr8MO1021wJe; __utmb=30057196.3.9.1290273791381; opt=no-opt;

Response

HTTP/1.1 200 OK
Server: Sun-Java-System-Web-Server/7.0
ETag: W/"50585d7e2cd77f3dfb1cd26f8aa9ee71"
X-runtime: 499
Content-Type: text/html; charset=utf-8
Proxy-agent: Sun-Java-System-Web-Server/7.0
Cache-Control: private, max-age=50
Date: Sat, 20 Nov 2010 18:20:59 GMT
Connection: close
Connection: Transfer-Encoding
Content-Length: 54234

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN"
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xmlns:og="http://opengraphprotocol.org/sc
...[SNIP]...
</script>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/main-min.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/ab-min.js" type="text/javascript"></script>
...[SNIP]...
<body class="news story">
<script src="http://www.googletagservices.com/tag/static/google_services.js" type="text/javascript"></script>
...[SNIP]...
</ul>


<script type="text/javascript" src="http://platform.twitter.com/widgets.js"></script>
...[SNIP]...
<div id="bloomberg-horizontal-rbox">
<script type="text/javascript" src="http://cdn.taboolasyndication.com/libtrc/bloomberg/rbox.js?article"></script>
...[SNIP]...
</script>
<script type="text/javascript" src="http://pagead2.googlesyndication.com/pagead/show_ads.js">
</script>
...[SNIP]...
</script>


<script type="text/javascript" src="http://static.newstogram.com/bloomberg-v3/js/histogram.js"></script>
...[SNIP]...
</noscript>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/s_code_p.js" type="text/javascript"></script> <link href="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_style.css" media="screen" rel="stylesheet" type="text/css" /> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_engine_c.js" type="text/javascript"></script> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_conf_en-US_inline.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script type="text/javascript" src="http://js.revsci.net/gateway/gw.js?csid=K05539"></script>
...[SNIP]...

4.74. http://www.bloomberg.com/news/2010-11-19/sanofi-buyout-target-genzyme-to-meet-u-s-deadline-to-change-manufacturing.html  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.bloomberg.com
Path:   /news/2010-11-19/sanofi-buyout-target-genzyme-to-meet-u-s-deadline-to-change-manufacturing.html

Issue detail

The response dynamically includes the following scripts from other domains:

Request

GET /news/2010-11-19/sanofi-buyout-target-genzyme-to-meet-u-s-deadline-to-change-manufacturing.html HTTP/1.1
Host: www.bloomberg.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmv=30057196.|3=opt=no-opt=1,; s_sess=%20s_ria%3Dflash%257CSilverlight%25204.0%3B%20s_campaign%3Dcof_2%3B%20s_cc%3Dtrue%3B%20ev1%3Dtv%253Ahome%3B%20s_sq%3D%3B; __utmz=30057196.1290273703.1.1.utmcsr=s0.2mdn.net|utmccn=(referral)|utmcmd=referral|utmcct=/1797755/Coffee_v1_300x250.swf; path_cookie=_news; BT=; oo_int_hit=1; oo_int_percent=0; rsi_segs=; s_vi=[CS]v1|267401DC851D2580-4000012F803267BB[CE]; OAX=rnneEkzoA7IACz4K; __utma=30057196.685584106.1290273703.1290273703.1290273703.1; __utmc=30057196; RMFD=011PJr8MO1021wJe; __utmb=30057196.3.9.1290273791381; opt=no-opt;

Response

HTTP/1.1 200 OK
Server: Sun-Java-System-Web-Server/7.0
ETag: W/"532536b3a46bd5ec865e803f28418e63"
X-runtime: 498
Content-Type: text/html; charset=utf-8
Proxy-agent: Sun-Java-System-Web-Server/7.0
Cache-Control: private, max-age=1
Date: Sat, 20 Nov 2010 18:21:02 GMT
Connection: close
Connection: Transfer-Encoding
Content-Length: 48599

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN"
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xmlns:og="http://opengraphprotocol.org/sc
...[SNIP]...
</script>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/main-min.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/ab-min.js" type="text/javascript"></script>
...[SNIP]...
<body class="news story">
<script src="http://www.googletagservices.com/tag/static/google_services.js" type="text/javascript"></script>
...[SNIP]...
</ul>


<script type="text/javascript" src="http://platform.twitter.com/widgets.js"></script>
...[SNIP]...
<div id="bloomberg-horizontal-rbox">
<script type="text/javascript" src="http://cdn.taboolasyndication.com/libtrc/bloomberg/rbox.js?article"></script>
...[SNIP]...
</script>
<script type="text/javascript" src="http://pagead2.googlesyndication.com/pagead/show_ads.js">
</script>
...[SNIP]...
</script>


<script type="text/javascript" src="http://static.newstogram.com/bloomberg-v3/js/histogram.js"></script>
...[SNIP]...
</noscript>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/s_code_p.js" type="text/javascript"></script> <link href="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_style.css" media="screen" rel="stylesheet" type="text/css" /> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_engine_c.js" type="text/javascript"></script> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_conf_en-US_inline.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script type="text/javascript" src="http://js.revsci.net/gateway/gw.js?csid=K05539"></script>
...[SNIP]...

4.75. http://www.bloomberg.com/news/2010-11-19/scarborough-suspended-from-msnbc-for-two-days-over-florida-campaign-gifts.html  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.bloomberg.com
Path:   /news/2010-11-19/scarborough-suspended-from-msnbc-for-two-days-over-florida-campaign-gifts.html

Issue detail

The response dynamically includes the following scripts from other domains:

Request

GET /news/2010-11-19/scarborough-suspended-from-msnbc-for-two-days-over-florida-campaign-gifts.html HTTP/1.1
Host: www.bloomberg.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmv=30057196.|3=opt=no-opt=1,; s_sess=%20s_ria%3Dflash%257CSilverlight%25204.0%3B%20s_campaign%3Dcof_2%3B%20s_cc%3Dtrue%3B%20ev1%3Dtv%253Ahome%3B%20s_sq%3D%3B; __utmz=30057196.1290273703.1.1.utmcsr=s0.2mdn.net|utmccn=(referral)|utmcmd=referral|utmcct=/1797755/Coffee_v1_300x250.swf; path_cookie=_news; BT=; oo_int_hit=1; oo_int_percent=0; rsi_segs=; s_vi=[CS]v1|267401DC851D2580-4000012F803267BB[CE]; OAX=rnneEkzoA7IACz4K; __utma=30057196.685584106.1290273703.1290273703.1290273703.1; __utmc=30057196; RMFD=011PJr8MO1021wJe; __utmb=30057196.3.9.1290273791381; opt=no-opt;

Response

HTTP/1.1 200 OK
Server: Sun-Java-System-Web-Server/7.0
ETag: "669b656a2ea1565253c30567ea6d0015"
X-runtime: 20
Content-Type: text/html; charset=utf-8
Proxy-agent: Sun-Java-System-Web-Server/7.0
Cache-Control: private, max-age=24
Date: Sat, 20 Nov 2010 18:20:59 GMT
Connection: close
Connection: Transfer-Encoding
Content-Length: 50603

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN"
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xmlns:og="http://opengraphprotocol.org/sc
...[SNIP]...
</script>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/main-min.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/ab-min.js" type="text/javascript"></script>
...[SNIP]...
<body class="news story">
<script src="http://www.googletagservices.com/tag/static/google_services.js" type="text/javascript"></script>
...[SNIP]...
</ul>


<script type="text/javascript" src="http://platform.twitter.com/widgets.js"></script>
...[SNIP]...
<div id="bloomberg-horizontal-rbox">
<script type="text/javascript" src="http://cdn.taboolasyndication.com/libtrc/bloomberg/rbox.js?article"></script>
...[SNIP]...
</script>
<script type="text/javascript" src="http://pagead2.googlesyndication.com/pagead/show_ads.js">
</script>
...[SNIP]...
</script>


<script type="text/javascript" src="http://static.newstogram.com/bloomberg-v3/js/histogram.js"></script>
...[SNIP]...
</noscript>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/s_code_p.js" type="text/javascript"></script> <link href="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_style.css" media="screen" rel="stylesheet" type="text/css" /> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_engine_c.js" type="text/javascript"></script> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_conf_en-US_inline.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script type="text/javascript" src="http://js.revsci.net/gateway/gw.js?csid=K05539"></script>
...[SNIP]...

4.76. http://www.bloomberg.com/news/2010-11-19/senate-approves-4-6-billion-for-claims-by-black-farmers-american-indians.html  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.bloomberg.com
Path:   /news/2010-11-19/senate-approves-4-6-billion-for-claims-by-black-farmers-american-indians.html

Issue detail

The response dynamically includes the following scripts from other domains:

Request

GET /news/2010-11-19/senate-approves-4-6-billion-for-claims-by-black-farmers-american-indians.html HTTP/1.1
Host: www.bloomberg.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmv=30057196.|3=opt=no-opt=1,; s_sess=%20s_ria%3Dflash%257CSilverlight%25204.0%3B%20s_campaign%3Dcof_2%3B%20s_cc%3Dtrue%3B%20ev1%3Dtv%253Ahome%3B%20s_sq%3D%3B; __utmz=30057196.1290273703.1.1.utmcsr=s0.2mdn.net|utmccn=(referral)|utmcmd=referral|utmcct=/1797755/Coffee_v1_300x250.swf; path_cookie=_news; BT=; oo_int_hit=1; oo_int_percent=0; rsi_segs=; s_vi=[CS]v1|267401DC851D2580-4000012F803267BB[CE]; OAX=rnneEkzoA7IACz4K; __utma=30057196.685584106.1290273703.1290273703.1290273703.1; __utmc=30057196; RMFD=011PJr8MO1021wJe; __utmb=30057196.3.9.1290273791381; opt=no-opt;

Response

HTTP/1.1 200 OK
Server: Sun-Java-System-Web-Server/7.0
ETag: W/"437b340f6356d01c54d945e4d08cd9e3"
X-runtime: 22
Content-Type: text/html; charset=utf-8
Proxy-agent: Sun-Java-System-Web-Server/7.0
Cache-Control: private, max-age=420
Date: Sat, 20 Nov 2010 18:21:07 GMT
Connection: close
Connection: Transfer-Encoding
Content-Length: 51383

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN"
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xmlns:og="http://opengraphprotocol.org/sc
...[SNIP]...
</script>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/main-min.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/ab-min.js" type="text/javascript"></script>
...[SNIP]...
<body class="news story">
<script src="http://www.googletagservices.com/tag/static/google_services.js" type="text/javascript"></script>
...[SNIP]...
</ul>


<script type="text/javascript" src="http://platform.twitter.com/widgets.js"></script>
...[SNIP]...
<div id="bloomberg-horizontal-rbox">
<script type="text/javascript" src="http://cdn.taboolasyndication.com/libtrc/bloomberg/rbox.js?article"></script>
...[SNIP]...
</script>
<script type="text/javascript" src="http://pagead2.googlesyndication.com/pagead/show_ads.js">
</script>
...[SNIP]...
</script>


<script type="text/javascript" src="http://static.newstogram.com/bloomberg-v3/js/histogram.js"></script>
...[SNIP]...
</noscript>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/s_code_p.js" type="text/javascript"></script> <link href="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_style.css" media="screen" rel="stylesheet" type="text/css" /> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_engine_c.js" type="text/javascript"></script> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_conf_en-US_inline.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script type="text/javascript" src="http://js.revsci.net/gateway/gw.js?csid=K05539"></script>
...[SNIP]...

4.77. http://www.bloomberg.com/news/2010-11-19/telesat-may-seek-buyers-in-deal-valuing-satellite-firm-at-up-to-7-billion.html  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.bloomberg.com
Path:   /news/2010-11-19/telesat-may-seek-buyers-in-deal-valuing-satellite-firm-at-up-to-7-billion.html

Issue detail

The response dynamically includes the following scripts from other domains:

Request

GET /news/2010-11-19/telesat-may-seek-buyers-in-deal-valuing-satellite-firm-at-up-to-7-billion.html HTTP/1.1
Host: www.bloomberg.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmv=30057196.|3=opt=no-opt=1,; s_sess=%20s_ria%3Dflash%257CSilverlight%25204.0%3B%20s_campaign%3Dcof_2%3B%20s_cc%3Dtrue%3B%20ev1%3Dtv%253Ahome%3B%20s_sq%3D%3B; __utmz=30057196.1290273703.1.1.utmcsr=s0.2mdn.net|utmccn=(referral)|utmcmd=referral|utmcct=/1797755/Coffee_v1_300x250.swf; path_cookie=_news; BT=; oo_int_hit=1; oo_int_percent=0; rsi_segs=; s_vi=[CS]v1|267401DC851D2580-4000012F803267BB[CE]; OAX=rnneEkzoA7IACz4K; __utma=30057196.685584106.1290273703.1290273703.1290273703.1; __utmc=30057196; RMFD=011PJr8MO1021wJe; __utmb=30057196.3.9.1290273791381; opt=no-opt;

Response

HTTP/1.1 200 OK
Server: Sun-Java-System-Web-Server/7.0
ETag: W/"2f8745d6dca8d503762641ec476d5997"
X-runtime: 584
Content-Type: text/html; charset=utf-8
Proxy-agent: Sun-Java-System-Web-Server/7.0
Cache-Control: private, max-age=10
Date: Sat, 20 Nov 2010 18:20:44 GMT
Connection: close
Connection: Transfer-Encoding
Content-Length: 53119

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN"
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xmlns:og="http://opengraphprotocol.org/sc
...[SNIP]...
</script>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/main-min.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/ab-min.js" type="text/javascript"></script>
...[SNIP]...
<body class="news story">
<script src="http://www.googletagservices.com/tag/static/google_services.js" type="text/javascript"></script>
...[SNIP]...
</ul>


<script type="text/javascript" src="http://platform.twitter.com/widgets.js"></script>
...[SNIP]...
<div id="bloomberg-horizontal-rbox">
<script type="text/javascript" src="http://cdn.taboolasyndication.com/libtrc/bloomberg/rbox.js?article"></script>
...[SNIP]...
</script>
<script type="text/javascript" src="http://pagead2.googlesyndication.com/pagead/show_ads.js">
</script>
...[SNIP]...
</script>


<script type="text/javascript" src="http://static.newstogram.com/bloomberg-v3/js/histogram.js"></script>
...[SNIP]...
</noscript>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/s_code_p.js" type="text/javascript"></script> <link href="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_style.css" media="screen" rel="stylesheet" type="text/css" /> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_engine_c.js" type="text/javascript"></script> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_conf_en-US_inline.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script type="text/javascript" src="http://js.revsci.net/gateway/gw.js?csid=K05539"></script>
...[SNIP]...

4.78. http://www.bloomberg.com/news/2010-11-19/terror-cases-work-in-civilian-court-verdict-shows-ann-woolner.html  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.bloomberg.com
Path:   /news/2010-11-19/terror-cases-work-in-civilian-court-verdict-shows-ann-woolner.html

Issue detail

The response dynamically includes the following scripts from other domains:

Request

GET /news/2010-11-19/terror-cases-work-in-civilian-court-verdict-shows-ann-woolner.html HTTP/1.1
Host: www.bloomberg.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmv=30057196.|3=opt=no-opt=1,; s_sess=%20s_ria%3Dflash%257CSilverlight%25204.0%3B%20s_campaign%3Dcof_2%3B%20s_cc%3Dtrue%3B%20ev1%3Dtv%253Ahome%3B%20s_sq%3D%3B; __utmz=30057196.1290273703.1.1.utmcsr=s0.2mdn.net|utmccn=(referral)|utmcmd=referral|utmcct=/1797755/Coffee_v1_300x250.swf; path_cookie=_news; BT=; oo_int_hit=1; oo_int_percent=0; rsi_segs=; s_vi=[CS]v1|267401DC851D2580-4000012F803267BB[CE]; OAX=rnneEkzoA7IACz4K; __utma=30057196.685584106.1290273703.1290273703.1290273703.1; __utmc=30057196; RMFD=011PJr8MO1021wJe; __utmb=30057196.3.9.1290273791381; opt=no-opt;

Response

HTTP/1.1 200 OK
Server: Sun-Java-System-Web-Server/7.0
ETag: W/"617a3890371302f09aba31c0308d1a3a"
X-runtime: 21
Content-Type: text/html; charset=utf-8
Proxy-agent: Sun-Java-System-Web-Server/7.0
Cache-Control: private, max-age=22
Date: Sat, 20 Nov 2010 18:20:50 GMT
Connection: close
Connection: Transfer-Encoding
Content-Length: 54867

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN"
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xmlns:og="http://opengraphprotocol.org/sc
...[SNIP]...
</script>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/main-min.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/ab-min.js" type="text/javascript"></script>
...[SNIP]...
<body class="news story">
<script src="http://www.googletagservices.com/tag/static/google_services.js" type="text/javascript"></script>
...[SNIP]...
</ul>


<script type="text/javascript" src="http://platform.twitter.com/widgets.js"></script>
...[SNIP]...
<div id="bloomberg-horizontal-rbox">
<script type="text/javascript" src="http://cdn.taboolasyndication.com/libtrc/bloomberg/rbox.js?article"></script>
...[SNIP]...
</script>
<script type="text/javascript" src="http://pagead2.googlesyndication.com/pagead/show_ads.js">
</script>
...[SNIP]...
</script>


<script type="text/javascript" src="http://static.newstogram.com/bloomberg-v3/js/histogram.js"></script>
...[SNIP]...
</noscript>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/s_code_p.js" type="text/javascript"></script> <link href="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_style.css" media="screen" rel="stylesheet" type="text/css" /> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_engine_c.js" type="text/javascript"></script> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_conf_en-US_inline.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script type="text/javascript" src="http://js.revsci.net/gateway/gw.js?csid=K05539"></script>
...[SNIP]...

4.79. http://www.bloomberg.com/news/2010-11-20/-harry-potter-has-61-2-million-first-day-sales-may-set-franchise-record.html  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.bloomberg.com
Path:   /news/2010-11-20/-harry-potter-has-61-2-million-first-day-sales-may-set-franchise-record.html

Issue detail

The response dynamically includes the following scripts from other domains:

Request

GET /news/2010-11-20/-harry-potter-has-61-2-million-first-day-sales-may-set-franchise-record.html HTTP/1.1
Host: www.bloomberg.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmv=30057196.|3=opt=no-opt=1,; s_sess=%20s_ria%3Dflash%257CSilverlight%25204.0%3B%20s_campaign%3Dcof_2%3B%20s_cc%3Dtrue%3B%20ev1%3Dtv%253Ahome%3B%20s_sq%3D%3B; __utmz=30057196.1290273703.1.1.utmcsr=s0.2mdn.net|utmccn=(referral)|utmcmd=referral|utmcct=/1797755/Coffee_v1_300x250.swf; path_cookie=_news; BT=; oo_int_hit=1; oo_int_percent=0; rsi_segs=; s_vi=[CS]v1|267401DC851D2580-4000012F803267BB[CE]; OAX=rnneEkzoA7IACz4K; __utma=30057196.685584106.1290273703.1290273703.1290273703.1; __utmc=30057196; RMFD=011PJr8MO1021wJe; __utmb=30057196.3.9.1290273791381; opt=no-opt;

Response

HTTP/1.1 200 OK
Server: Sun-Java-System-Web-Server/7.0
ETag: W/"ddf410654b508713bbc69dcdb6aa59fe"
X-runtime: 471
Content-Type: text/html; charset=utf-8
Proxy-agent: Sun-Java-System-Web-Server/7.0
Cache-Control: private, max-age=39
Date: Sat, 20 Nov 2010 18:21:13 GMT
Connection: close
Connection: Transfer-Encoding
Content-Length: 46108

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN"
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xmlns:og="http://opengraphprotocol.org/sc
...[SNIP]...
</script>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/main-min.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/ab-min.js" type="text/javascript"></script>
...[SNIP]...
<body class="news story">
<script src="http://www.googletagservices.com/tag/static/google_services.js" type="text/javascript"></script>
...[SNIP]...
</ul>


<script type="text/javascript" src="http://platform.twitter.com/widgets.js"></script>
...[SNIP]...
<div id="bloomberg-horizontal-rbox">
<script type="text/javascript" src="http://cdn.taboolasyndication.com/libtrc/bloomberg/rbox.js?article"></script>
...[SNIP]...
</script>
<script type="text/javascript" src="http://pagead2.googlesyndication.com/pagead/show_ads.js">
</script>
...[SNIP]...
</script>


<script type="text/javascript" src="http://static.newstogram.com/bloomberg-v3/js/histogram.js"></script>
...[SNIP]...
</noscript>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/s_code_p.js" type="text/javascript"></script> <link href="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_style.css" media="screen" rel="stylesheet" type="text/css" /> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_engine_c.js" type="text/javascript"></script> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_conf_en-US_inline.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script type="text/javascript" src="http://js.revsci.net/gateway/gw.js?csid=K05539"></script>
...[SNIP]...

4.80. http://www.bloomberg.com/news/2010-11-20/afghans-to-be-masters-of-their-own-house-in-2014-nato-says.html  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.bloomberg.com
Path:   /news/2010-11-20/afghans-to-be-masters-of-their-own-house-in-2014-nato-says.html

Issue detail

The response dynamically includes the following scripts from other domains:

Request

GET /news/2010-11-20/afghans-to-be-masters-of-their-own-house-in-2014-nato-says.html HTTP/1.1
Host: www.bloomberg.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmv=30057196.|3=opt=no-opt=1,; s_sess=%20s_ria%3Dflash%257CSilverlight%25204.0%3B%20s_campaign%3Dcof_2%3B%20s_cc%3Dtrue%3B%20ev1%3Dtv%253Ahome%3B%20s_sq%3D%3B; __utmz=30057196.1290273703.1.1.utmcsr=s0.2mdn.net|utmccn=(referral)|utmcmd=referral|utmcct=/1797755/Coffee_v1_300x250.swf; path_cookie=_news; BT=; oo_int_hit=1; oo_int_percent=0; rsi_segs=; s_vi=[CS]v1|267401DC851D2580-4000012F803267BB[CE]; OAX=rnneEkzoA7IACz4K; __utma=30057196.685584106.1290273703.1290273703.1290273703.1; __utmc=30057196; RMFD=011PJr8MO1021wJe; __utmb=30057196.3.9.1290273791381; opt=no-opt;

Response

HTTP/1.1 200 OK
Server: Sun-Java-System-Web-Server/7.0
ETag: W/"af4636ce223e7077e110ac15cd37a06a"
X-runtime: 21
Content-Type: text/html; charset=utf-8
Proxy-agent: Sun-Java-System-Web-Server/7.0
Cache-Control: private, max-age=28
Date: Sat, 20 Nov 2010 18:21:15 GMT
Connection: close
Connection: Transfer-Encoding
Content-Length: 51769

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN"
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xmlns:og="http://opengraphprotocol.org/sc
...[SNIP]...
</script>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/main-min.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/ab-min.js" type="text/javascript"></script>
...[SNIP]...
<body class="news story">
<script src="http://www.googletagservices.com/tag/static/google_services.js" type="text/javascript"></script>
...[SNIP]...
</ul>


<script type="text/javascript" src="http://platform.twitter.com/widgets.js"></script>
...[SNIP]...
<div id="bloomberg-horizontal-rbox">
<script type="text/javascript" src="http://cdn.taboolasyndication.com/libtrc/bloomberg/rbox.js?article"></script>
...[SNIP]...
</script>
<script type="text/javascript" src="http://pagead2.googlesyndication.com/pagead/show_ads.js">
</script>
...[SNIP]...
</script>


<script type="text/javascript" src="http://static.newstogram.com/bloomberg-v3/js/histogram.js"></script>
...[SNIP]...
</noscript>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/s_code_p.js" type="text/javascript"></script> <link href="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_style.css" media="screen" rel="stylesheet" type="text/css" /> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_engine_c.js" type="text/javascript"></script> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_conf_en-US_inline.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script type="text/javascript" src="http://js.revsci.net/gateway/gw.js?csid=K05539"></script>
...[SNIP]...

4.81. http://www.bloomberg.com/news/2010-11-20/canadian-dollar-falls-for-second-week-after-decline-in-crude-oil-prices.html  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.bloomberg.com
Path:   /news/2010-11-20/canadian-dollar-falls-for-second-week-after-decline-in-crude-oil-prices.html

Issue detail

The response dynamically includes the following scripts from other domains:

Request

GET /news/2010-11-20/canadian-dollar-falls-for-second-week-after-decline-in-crude-oil-prices.html HTTP/1.1
Host: www.bloomberg.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmv=30057196.|3=opt=no-opt=1,; s_sess=%20s_ria%3Dflash%257CSilverlight%25204.0%3B%20s_campaign%3Dcof_2%3B%20s_cc%3Dtrue%3B%20ev1%3Dtv%253Ahome%3B%20s_sq%3D%3B; __utmz=30057196.1290273703.1.1.utmcsr=s0.2mdn.net|utmccn=(referral)|utmcmd=referral|utmcct=/1797755/Coffee_v1_300x250.swf; path_cookie=_news; BT=; oo_int_hit=1; oo_int_percent=0; rsi_segs=; s_vi=[CS]v1|267401DC851D2580-4000012F803267BB[CE]; OAX=rnneEkzoA7IACz4K; __utma=30057196.685584106.1290273703.1290273703.1290273703.1; __utmc=30057196; RMFD=011PJr8MO1021wJe; __utmb=30057196.3.9.1290273791381; opt=no-opt;

Response

HTTP/1.1 200 OK
Server: Sun-Java-System-Web-Server/7.0
ETag: W/"56c83a662fe0b00f013e7294ebeaa0f5"
X-runtime: 460
Content-Type: text/html; charset=utf-8
Proxy-agent: Sun-Java-System-Web-Server/7.0
Cache-Control: private, max-age=1
Date: Sat, 20 Nov 2010 18:21:14 GMT
Connection: close
Connection: Transfer-Encoding
Content-Length: 49833

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN"
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xmlns:og="http://opengraphprotocol.org/sc
...[SNIP]...
</script>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/main-min.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/ab-min.js" type="text/javascript"></script>
...[SNIP]...
<body class="news story">
<script src="http://www.googletagservices.com/tag/static/google_services.js" type="text/javascript"></script>
...[SNIP]...
</ul>


<script type="text/javascript" src="http://platform.twitter.com/widgets.js"></script>
...[SNIP]...
<div id="bloomberg-horizontal-rbox">
<script type="text/javascript" src="http://cdn.taboolasyndication.com/libtrc/bloomberg/rbox.js?article"></script>
...[SNIP]...
</script>
<script type="text/javascript" src="http://pagead2.googlesyndication.com/pagead/show_ads.js">
</script>
...[SNIP]...
</script>


<script type="text/javascript" src="http://static.newstogram.com/bloomberg-v3/js/histogram.js"></script>
...[SNIP]...
</noscript>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/s_code_p.js" type="text/javascript"></script> <link href="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_style.css" media="screen" rel="stylesheet" type="text/css" /> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_engine_c.js" type="text/javascript"></script> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_conf_en-US_inline.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script type="text/javascript" src="http://js.revsci.net/gateway/gw.js?csid=K05539"></script>
...[SNIP]...

4.82. http://www.bloomberg.com/news/2010-11-20/duke-of-westminster-tops-ranking-of-property-investors-in-u-k-.html  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.bloomberg.com
Path:   /news/2010-11-20/duke-of-westminster-tops-ranking-of-property-investors-in-u-k-.html

Issue detail

The response dynamically includes the following scripts from other domains:

Request

GET /news/2010-11-20/duke-of-westminster-tops-ranking-of-property-investors-in-u-k-.html HTTP/1.1
Host: www.bloomberg.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmv=30057196.|3=opt=no-opt=1,; s_sess=%20s_ria%3Dflash%257CSilverlight%25204.0%3B%20s_campaign%3Dcof_2%3B%20s_cc%3Dtrue%3B%20ev1%3Dtv%253Ahome%3B%20s_sq%3D%3B; __utmz=30057196.1290273703.1.1.utmcsr=s0.2mdn.net|utmccn=(referral)|utmcmd=referral|utmcct=/1797755/Coffee_v1_300x250.swf; path_cookie=_news; BT=; oo_int_hit=1; oo_int_percent=0; rsi_segs=; s_vi=[CS]v1|267401DC851D2580-4000012F803267BB[CE]; OAX=rnneEkzoA7IACz4K; __utma=30057196.685584106.1290273703.1290273703.1290273703.1; __utmc=30057196; RMFD=011PJr8MO1021wJe; __utmb=30057196.3.9.1290273791381; opt=no-opt;

Response

HTTP/1.1 200 OK
Server: Sun-Java-System-Web-Server/7.0
ETag: W/"9e24ee89a77df57eb8de84d240d97039"
X-runtime: 645
Content-Type: text/html; charset=utf-8
Proxy-agent: Sun-Java-System-Web-Server/7.0
Cache-Control: private, max-age=18
Date: Sat, 20 Nov 2010 18:21:13 GMT
Connection: close
Connection: Transfer-Encoding
Content-Length: 49914

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN"
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xmlns:og="http://opengraphprotocol.org/sc
...[SNIP]...
</script>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/main-min.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/ab-min.js" type="text/javascript"></script>
...[SNIP]...
<body class="news story">
<script src="http://www.googletagservices.com/tag/static/google_services.js" type="text/javascript"></script>
...[SNIP]...
</ul>


<script type="text/javascript" src="http://platform.twitter.com/widgets.js"></script>
...[SNIP]...
<div id="bloomberg-horizontal-rbox">
<script type="text/javascript" src="http://cdn.taboolasyndication.com/libtrc/bloomberg/rbox.js?article"></script>
...[SNIP]...
</script>
<script type="text/javascript" src="http://pagead2.googlesyndication.com/pagead/show_ads.js">
</script>
...[SNIP]...
</script>


<script type="text/javascript" src="http://static.newstogram.com/bloomberg-v3/js/histogram.js"></script>
...[SNIP]...
</noscript>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/s_code_p.js" type="text/javascript"></script> <link href="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_style.css" media="screen" rel="stylesheet" type="text/css" /> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_engine_c.js" type="text/javascript"></script> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_conf_en-US_inline.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script type="text/javascript" src="http://js.revsci.net/gateway/gw.js?csid=K05539"></script>
...[SNIP]...

4.83. http://www.bloomberg.com/news/2010-11-20/india-to-prosecute-any-phone-license-corruption-singh-pledges.html  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.bloomberg.com
Path:   /news/2010-11-20/india-to-prosecute-any-phone-license-corruption-singh-pledges.html

Issue detail

The response dynamically includes the following scripts from other domains:

Request

GET /news/2010-11-20/india-to-prosecute-any-phone-license-corruption-singh-pledges.html HTTP/1.1
Host: www.bloomberg.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmv=30057196.|3=opt=no-opt=1,; s_sess=%20s_ria%3Dflash%257CSilverlight%25204.0%3B%20s_campaign%3Dcof_2%3B%20s_cc%3Dtrue%3B%20ev1%3Dtv%253Ahome%3B%20s_sq%3D%3B; __utmz=30057196.1290273703.1.1.utmcsr=s0.2mdn.net|utmccn=(referral)|utmcmd=referral|utmcct=/1797755/Coffee_v1_300x250.swf; path_cookie=_news; BT=; oo_int_hit=1; oo_int_percent=0; rsi_segs=; s_vi=[CS]v1|267401DC851D2580-4000012F803267BB[CE]; OAX=rnneEkzoA7IACz4K; __utma=30057196.685584106.1290273703.1290273703.1290273703.1; __utmc=30057196; RMFD=011PJr8MO1021wJe; __utmb=30057196.3.9.1290273791381; opt=no-opt;

Response

HTTP/1.1 200 OK
Server: Sun-Java-System-Web-Server/7.0
ETag: W/"9ded4828f9ee3c7c3718490ffc4efc75"
X-runtime: 22
Content-Type: text/html; charset=utf-8
Proxy-agent: Sun-Java-System-Web-Server/7.0
Cache-Control: private, max-age=1
Date: Sat, 20 Nov 2010 18:21:19 GMT
Connection: close
Connection: Transfer-Encoding
Content-Length: 50952

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN"
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xmlns:og="http://opengraphprotocol.org/sc
...[SNIP]...
</script>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/main-min.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/ab-min.js" type="text/javascript"></script>
...[SNIP]...
<body class="news story">
<script src="http://www.googletagservices.com/tag/static/google_services.js" type="text/javascript"></script>
...[SNIP]...
</ul>


<script type="text/javascript" src="http://platform.twitter.com/widgets.js"></script>
...[SNIP]...
<div id="bloomberg-horizontal-rbox">
<script type="text/javascript" src="http://cdn.taboolasyndication.com/libtrc/bloomberg/rbox.js?article"></script>
...[SNIP]...
</script>
<script type="text/javascript" src="http://pagead2.googlesyndication.com/pagead/show_ads.js">
</script>
...[SNIP]...
</script>


<script type="text/javascript" src="http://static.newstogram.com/bloomberg-v3/js/histogram.js"></script>
...[SNIP]...
</noscript>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/s_code_p.js" type="text/javascript"></script> <link href="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_style.css" media="screen" rel="stylesheet" type="text/css" /> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_engine_c.js" type="text/javascript"></script> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_conf_en-US_inline.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script type="text/javascript" src="http://js.revsci.net/gateway/gw.js?csid=K05539"></script>
...[SNIP]...

4.84. http://www.bloomberg.com/news/2010-11-20/irish-corporate-tax-rate-increase-isn-t-a-condition-for-aid-sarkozy-says.html  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.bloomberg.com
Path:   /news/2010-11-20/irish-corporate-tax-rate-increase-isn-t-a-condition-for-aid-sarkozy-says.html

Issue detail

The response dynamically includes the following scripts from other domains:

Request

GET /news/2010-11-20/irish-corporate-tax-rate-increase-isn-t-a-condition-for-aid-sarkozy-says.html HTTP/1.1
Host: www.bloomberg.com
Proxy-Connection: keep-alive
Referer: http://www.bloomberg.com/?cmpid=cof_2
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.7 (KHTML, like Gecko) Chrome/7.0.517.44 Safari/534.7
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: opt=no-opt; oo_int_percent=0; oo_int_hit=1; OAX=rnneEkzoA7IACz4K; RMFD=011PJr8MO1021wJe; __utmz=30057196.1290273703.1.1.utmcsr=s0.2mdn.net|utmccn=(referral)|utmcmd=referral|utmcct=/1797755/Coffee_v1_300x250.swf; s_vi=[CS]v1|267401DC851D2580-4000012F803267BB[CE]; rsi_segs=; BT=; path_cookie=_news; __utma=30057196.685584106.1290273703.1290273703.1290273703.1; __utmc=30057196; __utmv=30057196.|3=opt=no-opt=1,; __utmb=30057196.2.9.1290273791381; s_sess=%20s_ria%3Dflash%257CSilverlight%25204.0%3B%20s_cc%3Dtrue%3B%20s_campaign%3Dcof_2%3B%20ev1%3Dhome%3B%20s_sq%3Dbloombergcom%253D%252526pid%25253Dhome%252526pidt%25253D1%252526oid%25253Dhttp%2525253A//www.bloomberg.com/news/2010-11-20/irish-corporate-tax-rate-increase-isn-t-a-condition-for-aid%252526ot%25253DA%3B

Response

HTTP/1.1 200 OK
Server: Sun-Java-System-Web-Server/7.0
Vary: Accept-Encoding
ETag: W/"9f984cc1380bb83648578d68cc3bdf90"
X-runtime: 26
Content-Type: text/html; charset=utf-8
Proxy-agent: Sun-Java-System-Web-Server/7.0
Cache-Control: private, max-age=166
Date: Sat, 20 Nov 2010 18:02:27 GMT
Connection: close
Content-Length: 55783

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN"
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xmlns:og="http://opengraphprotocol.org/sc
...[SNIP]...
</script>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/main-min.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/ab-min.js" type="text/javascript"></script>
...[SNIP]...
<body class="news story">
<script src="http://www.googletagservices.com/tag/static/google_services.js" type="text/javascript"></script>
...[SNIP]...
</ul>


<script type="text/javascript" src="http://platform.twitter.com/widgets.js"></script>
...[SNIP]...
<div id="bloomberg-horizontal-rbox">
<script type="text/javascript" src="http://cdn.taboolasyndication.com/libtrc/bloomberg/rbox.js?article"></script>
...[SNIP]...
</script>
<script type="text/javascript" src="http://pagead2.googlesyndication.com/pagead/show_ads.js">
</script>
...[SNIP]...
</script>


<script type="text/javascript" src="http://static.newstogram.com/bloomberg-v3/js/histogram.js"></script>
...[SNIP]...
</noscript>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/s_code_p.js" type="text/javascript"></script> <link href="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_style.css" media="screen" rel="stylesheet" type="text/css" /> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_engine_c.js" type="text/javascript"></script> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_conf_en-US_inline.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script type="text/javascript" src="http://js.revsci.net/gateway/gw.js?csid=K05539"></script>
...[SNIP]...

4.85. http://www.bloomberg.com/news/2010-11-20/irish-corporate-tax-rate-increase-isn-t-a-condition-for-aid-sarkozy-says.html/  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.bloomberg.com
Path:   /news/2010-11-20/irish-corporate-tax-rate-increase-isn-t-a-condition-for-aid-sarkozy-says.html/

Issue detail

The response dynamically includes the following scripts from other domains:

Request

GET /news/2010-11-20/irish-corporate-tax-rate-increase-isn-t-a-condition-for-aid-sarkozy-says.html/ HTTP/1.1
Host: www.bloomberg.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmv=30057196.|3=opt=no-opt=1,; s_sess=%20s_ria%3Dflash%257CSilverlight%25204.0%3B%20s_campaign%3Dcof_2%3B%20s_cc%3Dtrue%3B%20ev1%3Dtv%253Ahome%3B%20s_sq%3D%3B; __utmz=30057196.1290273703.1.1.utmcsr=s0.2mdn.net|utmccn=(referral)|utmcmd=referral|utmcct=/1797755/Coffee_v1_300x250.swf; path_cookie=_news; BT=; oo_int_hit=1; oo_int_percent=0; rsi_segs=; s_vi=[CS]v1|267401DC851D2580-4000012F803267BB[CE]; OAX=rnneEkzoA7IACz4K; __utma=30057196.685584106.1290273703.1290273703.1290273703.1; __utmc=30057196; RMFD=011PJr8MO1021wJe; __utmb=30057196.3.9.1290273791381; opt=no-opt;

Response

HTTP/1.1 200 OK
Server: Sun-Java-System-Web-Server/7.0
ETag: W/"d9267640347111b4111b3c6c69baf6f1"
X-runtime: 1498
Content-Type: text/html; charset=utf-8
Proxy-agent: Sun-Java-System-Web-Server/7.0
Cache-Control: private, max-age=33
Date: Sat, 20 Nov 2010 18:21:21 GMT
Connection: close
Connection: Transfer-Encoding
Content-Length: 55783

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN"
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xmlns:og="http://opengraphprotocol.org/sc
...[SNIP]...
</script>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/main-min.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/ab-min.js" type="text/javascript"></script>
...[SNIP]...
<body class="news story">
<script src="http://www.googletagservices.com/tag/static/google_services.js" type="text/javascript"></script>
...[SNIP]...
</ul>


<script type="text/javascript" src="http://platform.twitter.com/widgets.js"></script>
...[SNIP]...
<div id="bloomberg-horizontal-rbox">
<script type="text/javascript" src="http://cdn.taboolasyndication.com/libtrc/bloomberg/rbox.js?article"></script>
...[SNIP]...
</script>
<script type="text/javascript" src="http://pagead2.googlesyndication.com/pagead/show_ads.js">
</script>
...[SNIP]...
</script>


<script type="text/javascript" src="http://static.newstogram.com/bloomberg-v3/js/histogram.js"></script>
...[SNIP]...
</noscript>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/s_code_p.js" type="text/javascript"></script> <link href="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_style.css" media="screen" rel="stylesheet" type="text/css" /> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_engine_c.js" type="text/javascript"></script> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_conf_en-US_inline.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script type="text/javascript" src="http://js.revsci.net/gateway/gw.js?csid=K05539"></script>
...[SNIP]...

4.86. http://www.bloomberg.com/news/2010-11-20/irish-talks-intensify-as-banks-lose-deposits-cowen-campaigns.html  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.bloomberg.com
Path:   /news/2010-11-20/irish-talks-intensify-as-banks-lose-deposits-cowen-campaigns.html

Issue detail

The response dynamically includes the following scripts from other domains:

Request

GET /news/2010-11-20/irish-talks-intensify-as-banks-lose-deposits-cowen-campaigns.html HTTP/1.1
Host: www.bloomberg.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmv=30057196.|3=opt=no-opt=1,; s_sess=%20s_ria%3Dflash%257CSilverlight%25204.0%3B%20s_campaign%3Dcof_2%3B%20s_cc%3Dtrue%3B%20ev1%3Dtv%253Ahome%3B%20s_sq%3D%3B; __utmz=30057196.1290273703.1.1.utmcsr=s0.2mdn.net|utmccn=(referral)|utmcmd=referral|utmcct=/1797755/Coffee_v1_300x250.swf; path_cookie=_news; BT=; oo_int_hit=1; oo_int_percent=0; rsi_segs=; s_vi=[CS]v1|267401DC851D2580-4000012F803267BB[CE]; OAX=rnneEkzoA7IACz4K; __utma=30057196.685584106.1290273703.1290273703.1290273703.1; __utmc=30057196; RMFD=011PJr8MO1021wJe; __utmb=30057196.3.9.1290273791381; opt=no-opt;

Response

HTTP/1.1 200 OK
Server: Sun-Java-System-Web-Server/7.0
ETag: W/"9b7c05a2e866c7af4faece713e21d860"
X-runtime: 20
Content-Type: text/html; charset=utf-8
Proxy-agent: Sun-Java-System-Web-Server/7.0
Cache-Control: private, max-age=9
Date: Sat, 20 Nov 2010 18:21:21 GMT
Connection: close
Connection: Transfer-Encoding
Content-Length: 52573

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN"
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xmlns:og="http://opengraphprotocol.org/sc
...[SNIP]...
</script>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/main-min.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/ab-min.js" type="text/javascript"></script>
...[SNIP]...
<body class="news story">
<script src="http://www.googletagservices.com/tag/static/google_services.js" type="text/javascript"></script>
...[SNIP]...
</ul>


<script type="text/javascript" src="http://platform.twitter.com/widgets.js"></script>
...[SNIP]...
<div id="bloomberg-horizontal-rbox">
<script type="text/javascript" src="http://cdn.taboolasyndication.com/libtrc/bloomberg/rbox.js?article"></script>
...[SNIP]...
</script>
<script type="text/javascript" src="http://pagead2.googlesyndication.com/pagead/show_ads.js">
</script>
...[SNIP]...
</script>


<script type="text/javascript" src="http://static.newstogram.com/bloomberg-v3/js/histogram.js"></script>
...[SNIP]...
</noscript>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/s_code_p.js" type="text/javascript"></script> <link href="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_style.css" media="screen" rel="stylesheet" type="text/css" /> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_engine_c.js" type="text/javascript"></script> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_conf_en-US_inline.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script type="text/javascript" src="http://js.revsci.net/gateway/gw.js?csid=K05539"></script>
...[SNIP]...

4.87. http://www.bloomberg.com/news/2010-11-20/mlb-s-houston-astros-for-sale-by-owner-drayton-mclane-after-18-years.html  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.bloomberg.com
Path:   /news/2010-11-20/mlb-s-houston-astros-for-sale-by-owner-drayton-mclane-after-18-years.html

Issue detail

The response dynamically includes the following scripts from other domains:

Request

GET /news/2010-11-20/mlb-s-houston-astros-for-sale-by-owner-drayton-mclane-after-18-years.html HTTP/1.1
Host: www.bloomberg.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmv=30057196.|3=opt=no-opt=1,; s_sess=%20s_ria%3Dflash%257CSilverlight%25204.0%3B%20s_campaign%3Dcof_2%3B%20s_cc%3Dtrue%3B%20ev1%3Dtv%253Ahome%3B%20s_sq%3D%3B; __utmz=30057196.1290273703.1.1.utmcsr=s0.2mdn.net|utmccn=(referral)|utmcmd=referral|utmcct=/1797755/Coffee_v1_300x250.swf; path_cookie=_news; BT=; oo_int_hit=1; oo_int_percent=0; rsi_segs=; s_vi=[CS]v1|267401DC851D2580-4000012F803267BB[CE]; OAX=rnneEkzoA7IACz4K; __utma=30057196.685584106.1290273703.1290273703.1290273703.1; __utmc=30057196; RMFD=011PJr8MO1021wJe; __utmb=30057196.3.9.1290273791381; opt=no-opt;

Response

HTTP/1.1 200 OK
Server: Sun-Java-System-Web-Server/7.0
ETag: W/"215a0a4760b13c576e2bdfdc57ff492a"
X-runtime: 24
Content-Type: text/html; charset=utf-8
Proxy-agent: Sun-Java-System-Web-Server/7.0
Cache-Control: private, max-age=8
Date: Sat, 20 Nov 2010 18:21:17 GMT
Connection: close
Connection: Transfer-Encoding
Content-Length: 48110

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN"
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xmlns:og="http://opengraphprotocol.org/sc
...[SNIP]...
</script>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/main-min.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/ab-min.js" type="text/javascript"></script>
...[SNIP]...
<body class="news story">
<script src="http://www.googletagservices.com/tag/static/google_services.js" type="text/javascript"></script>
...[SNIP]...
</ul>


<script type="text/javascript" src="http://platform.twitter.com/widgets.js"></script>
...[SNIP]...
<div id="bloomberg-horizontal-rbox">
<script type="text/javascript" src="http://cdn.taboolasyndication.com/libtrc/bloomberg/rbox.js?article"></script>
...[SNIP]...
</script>
<script type="text/javascript" src="http://pagead2.googlesyndication.com/pagead/show_ads.js">
</script>
...[SNIP]...
</script>


<script type="text/javascript" src="http://static.newstogram.com/bloomberg-v3/js/histogram.js"></script>
...[SNIP]...
</noscript>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/s_code_p.js" type="text/javascript"></script> <link href="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_style.css" media="screen" rel="stylesheet" type="text/css" /> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_engine_c.js" type="text/javascript"></script> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_conf_en-US_inline.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script type="text/javascript" src="http://js.revsci.net/gateway/gw.js?csid=K05539"></script>
...[SNIP]...

4.88. http://www.bloomberg.com/news/2010-11-20/obama-says-ratification-of-start-fundamental-to-u-s-security.html  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.bloomberg.com
Path:   /news/2010-11-20/obama-says-ratification-of-start-fundamental-to-u-s-security.html

Issue detail

The response dynamically includes the following scripts from other domains:

Request

GET /news/2010-11-20/obama-says-ratification-of-start-fundamental-to-u-s-security.html HTTP/1.1
Host: www.bloomberg.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmv=30057196.|3=opt=no-opt=1,; s_sess=%20s_ria%3Dflash%257CSilverlight%25204.0%3B%20s_campaign%3Dcof_2%3B%20s_cc%3Dtrue%3B%20ev1%3Dtv%253Ahome%3B%20s_sq%3D%3B; __utmz=30057196.1290273703.1.1.utmcsr=s0.2mdn.net|utmccn=(referral)|utmcmd=referral|utmcct=/1797755/Coffee_v1_300x250.swf; path_cookie=_news; BT=; oo_int_hit=1; oo_int_percent=0; rsi_segs=; s_vi=[CS]v1|267401DC851D2580-4000012F803267BB[CE]; OAX=rnneEkzoA7IACz4K; __utma=30057196.685584106.1290273703.1290273703.1290273703.1; __utmc=30057196; RMFD=011PJr8MO1021wJe; __utmb=30057196.3.9.1290273791381; opt=no-opt;

Response

HTTP/1.1 200 OK
Server: Sun-Java-System-Web-Server/7.0
ETag: W/"b6f176c6dde831366c11415ad68b2336"
X-runtime: 510
Content-Type: text/html; charset=utf-8
Proxy-agent: Sun-Java-System-Web-Server/7.0
Cache-Control: private, max-age=36
Date: Sat, 20 Nov 2010 18:21:15 GMT
Connection: close
Connection: Transfer-Encoding
Content-Length: 50704

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN"
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xmlns:og="http://opengraphprotocol.org/sc
...[SNIP]...
</script>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/main-min.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/ab-min.js" type="text/javascript"></script>
...[SNIP]...
<body class="news story">
<script src="http://www.googletagservices.com/tag/static/google_services.js" type="text/javascript"></script>
...[SNIP]...
</ul>


<script type="text/javascript" src="http://platform.twitter.com/widgets.js"></script>
...[SNIP]...
<div id="bloomberg-horizontal-rbox">
<script type="text/javascript" src="http://cdn.taboolasyndication.com/libtrc/bloomberg/rbox.js?article"></script>
...[SNIP]...
</script>
<script type="text/javascript" src="http://pagead2.googlesyndication.com/pagead/show_ads.js">
</script>
...[SNIP]...
</script>


<script type="text/javascript" src="http://static.newstogram.com/bloomberg-v3/js/histogram.js"></script>
...[SNIP]...
</noscript>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/s_code_p.js" type="text/javascript"></script> <link href="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_style.css" media="screen" rel="stylesheet" type="text/css" /> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_engine_c.js" type="text/javascript"></script> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_conf_en-US_inline.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script type="text/javascript" src="http://js.revsci.net/gateway/gw.js?csid=K05539"></script>
...[SNIP]...

4.89. http://www.bloomberg.com/news/2010-11-20/pat-burns-who-led-new-jersey-devils-to-2003-stanley-cup-title-dies-at-58.html  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.bloomberg.com
Path:   /news/2010-11-20/pat-burns-who-led-new-jersey-devils-to-2003-stanley-cup-title-dies-at-58.html

Issue detail

The response dynamically includes the following scripts from other domains:

Request

GET /news/2010-11-20/pat-burns-who-led-new-jersey-devils-to-2003-stanley-cup-title-dies-at-58.html HTTP/1.1
Host: www.bloomberg.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmv=30057196.|3=opt=no-opt=1,; s_sess=%20s_ria%3Dflash%257CSilverlight%25204.0%3B%20s_campaign%3Dcof_2%3B%20s_cc%3Dtrue%3B%20ev1%3Dtv%253Ahome%3B%20s_sq%3D%3B; __utmz=30057196.1290273703.1.1.utmcsr=s0.2mdn.net|utmccn=(referral)|utmcmd=referral|utmcct=/1797755/Coffee_v1_300x250.swf; path_cookie=_news; BT=; oo_int_hit=1; oo_int_percent=0; rsi_segs=; s_vi=[CS]v1|267401DC851D2580-4000012F803267BB[CE]; OAX=rnneEkzoA7IACz4K; __utma=30057196.685584106.1290273703.1290273703.1290273703.1; __utmc=30057196; RMFD=011PJr8MO1021wJe; __utmb=30057196.3.9.1290273791381; opt=no-opt;

Response

HTTP/1.1 200 OK
Server: Sun-Java-System-Web-Server/7.0
ETag: W/"4663a5ac86df7becbf12306e762567bf"
X-runtime: 492
Content-Type: text/html; charset=utf-8
Proxy-agent: Sun-Java-System-Web-Server/7.0
Cache-Control: private, max-age=16
Date: Sat, 20 Nov 2010 18:21:16 GMT
Connection: close
Connection: Transfer-Encoding
Content-Length: 48661

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN"
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xmlns:og="http://opengraphprotocol.org/sc
...[SNIP]...
</script>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/main-min.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/ab-min.js" type="text/javascript"></script>
...[SNIP]...
<body class="news story">
<script src="http://www.googletagservices.com/tag/static/google_services.js" type="text/javascript"></script>
...[SNIP]...
</ul>


<script type="text/javascript" src="http://platform.twitter.com/widgets.js"></script>
...[SNIP]...
<div id="bloomberg-horizontal-rbox">
<script type="text/javascript" src="http://cdn.taboolasyndication.com/libtrc/bloomberg/rbox.js?article"></script>
...[SNIP]...
</script>
<script type="text/javascript" src="http://pagead2.googlesyndication.com/pagead/show_ads.js">
</script>
...[SNIP]...
</script>


<script type="text/javascript" src="http://static.newstogram.com/bloomberg-v3/js/histogram.js"></script>
...[SNIP]...
</noscript>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/s_code_p.js" type="text/javascript"></script> <link href="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_style.css" media="screen" rel="stylesheet" type="text/css" /> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_engine_c.js" type="text/javascript"></script> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_conf_en-US_inline.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script type="text/javascript" src="http://js.revsci.net/gateway/gw.js?csid=K05539"></script>
...[SNIP]...

4.90. http://www.bloomberg.com/news/2010-11-20/russia-agrees-to-cooperate-with-nato-on-missile-defense-rasmussen-says.html  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.bloomberg.com
Path:   /news/2010-11-20/russia-agrees-to-cooperate-with-nato-on-missile-defense-rasmussen-says.html

Issue detail

The response dynamically includes the following scripts from other domains:

Request

GET /news/2010-11-20/russia-agrees-to-cooperate-with-nato-on-missile-defense-rasmussen-says.html HTTP/1.1
Host: www.bloomberg.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmv=30057196.|3=opt=no-opt=1,; s_sess=%20s_ria%3Dflash%257CSilverlight%25204.0%3B%20s_campaign%3Dcof_2%3B%20s_cc%3Dtrue%3B%20ev1%3Dtv%253Ahome%3B%20s_sq%3D%3B; __utmz=30057196.1290273703.1.1.utmcsr=s0.2mdn.net|utmccn=(referral)|utmcmd=referral|utmcct=/1797755/Coffee_v1_300x250.swf; path_cookie=_news; BT=; oo_int_hit=1; oo_int_percent=0; rsi_segs=; s_vi=[CS]v1|267401DC851D2580-4000012F803267BB[CE]; OAX=rnneEkzoA7IACz4K; __utma=30057196.685584106.1290273703.1290273703.1290273703.1; __utmc=30057196; RMFD=011PJr8MO1021wJe; __utmb=30057196.3.9.1290273791381; opt=no-opt;

Response

HTTP/1.1 200 OK
Server: Sun-Java-System-Web-Server/7.0
ETag: W/"4dd76406eadd644d812cfb92eea8ac0b"
X-runtime: 480
Content-Type: text/html; charset=utf-8
Proxy-agent: Sun-Java-System-Web-Server/7.0
Cache-Control: private, max-age=38
Date: Sat, 20 Nov 2010 18:21:21 GMT
Connection: close
Connection: Transfer-Encoding
Content-Length: 45350

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN"
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xmlns:og="http://opengraphprotocol.org/sc
...[SNIP]...
</script>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/main-min.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/ab-min.js" type="text/javascript"></script>
...[SNIP]...
<body class="news story">
<script src="http://www.googletagservices.com/tag/static/google_services.js" type="text/javascript"></script>
...[SNIP]...
</ul>


<script type="text/javascript" src="http://platform.twitter.com/widgets.js"></script>
...[SNIP]...
<div id="bloomberg-horizontal-rbox">
<script type="text/javascript" src="http://cdn.taboolasyndication.com/libtrc/bloomberg/rbox.js?article"></script>
...[SNIP]...
</script>
<script type="text/javascript" src="http://pagead2.googlesyndication.com/pagead/show_ads.js">
</script>
...[SNIP]...
</script>


<script type="text/javascript" src="http://static.newstogram.com/bloomberg-v3/js/histogram.js"></script>
...[SNIP]...
</noscript>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/s_code_p.js" type="text/javascript"></script> <link href="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_style.css" media="screen" rel="stylesheet" type="text/css" /> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_engine_c.js" type="text/javascript"></script> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_conf_en-US_inline.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script type="text/javascript" src="http://js.revsci.net/gateway/gw.js?csid=K05539"></script>
...[SNIP]...

4.91. http://www.bloomberg.com/news/2010-11-20/saudi-arabain-shares-decline-to-two-week-low-on-china-ireland-oil-prices.html  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.bloomberg.com
Path:   /news/2010-11-20/saudi-arabain-shares-decline-to-two-week-low-on-china-ireland-oil-prices.html

Issue detail

The response dynamically includes the following scripts from other domains:

Request

GET /news/2010-11-20/saudi-arabain-shares-decline-to-two-week-low-on-china-ireland-oil-prices.html HTTP/1.1
Host: www.bloomberg.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmv=30057196.|3=opt=no-opt=1,; s_sess=%20s_ria%3Dflash%257CSilverlight%25204.0%3B%20s_campaign%3Dcof_2%3B%20s_cc%3Dtrue%3B%20ev1%3Dtv%253Ahome%3B%20s_sq%3D%3B; __utmz=30057196.1290273703.1.1.utmcsr=s0.2mdn.net|utmccn=(referral)|utmcmd=referral|utmcct=/1797755/Coffee_v1_300x250.swf; path_cookie=_news; BT=; oo_int_hit=1; oo_int_percent=0; rsi_segs=; s_vi=[CS]v1|267401DC851D2580-4000012F803267BB[CE]; OAX=rnneEkzoA7IACz4K; __utma=30057196.685584106.1290273703.1290273703.1290273703.1; __utmc=30057196; RMFD=011PJr8MO1021wJe; __utmb=30057196.3.9.1290273791381; opt=no-opt;

Response

HTTP/1.1 200 OK
Server: Sun-Java-System-Web-Server/7.0
ETag: W/"01808a9ab6aa0d3beca45e20590383e5"
X-runtime: 23
Content-Type: text/html; charset=utf-8
Proxy-agent: Sun-Java-System-Web-Server/7.0
Cache-Control: private, max-age=16
Date: Sat, 20 Nov 2010 18:21:13 GMT
Connection: close
Connection: Transfer-Encoding
Content-Length: 48854

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN"
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xmlns:og="http://opengraphprotocol.org/sc
...[SNIP]...
</script>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/main-min.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/ab-min.js" type="text/javascript"></script>
...[SNIP]...
<body class="news story">
<script src="http://www.googletagservices.com/tag/static/google_services.js" type="text/javascript"></script>
...[SNIP]...
</ul>


<script type="text/javascript" src="http://platform.twitter.com/widgets.js"></script>
...[SNIP]...
<div id="bloomberg-horizontal-rbox">
<script type="text/javascript" src="http://cdn.taboolasyndication.com/libtrc/bloomberg/rbox.js?article"></script>
...[SNIP]...
</script>
<script type="text/javascript" src="http://pagead2.googlesyndication.com/pagead/show_ads.js">
</script>
...[SNIP]...
</script>


<script type="text/javascript" src="http://static.newstogram.com/bloomberg-v3/js/histogram.js"></script>
...[SNIP]...
</noscript>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/s_code_p.js" type="text/javascript"></script> <link href="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_style.css" media="screen" rel="stylesheet" type="text/css" /> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_engine_c.js" type="text/javascript"></script> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_conf_en-US_inline.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script type="text/javascript" src="http://js.revsci.net/gateway/gw.js?csid=K05539"></script>
...[SNIP]...

4.92. http://www.bloomberg.com/news/2010-11-20/suu-kyi-warns-against-rose-colored-glasses-in-talks-with-myanmar-junta.html  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.bloomberg.com
Path:   /news/2010-11-20/suu-kyi-warns-against-rose-colored-glasses-in-talks-with-myanmar-junta.html

Issue detail

The response dynamically includes the following scripts from other domains:

Request

GET /news/2010-11-20/suu-kyi-warns-against-rose-colored-glasses-in-talks-with-myanmar-junta.html HTTP/1.1
Host: www.bloomberg.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmv=30057196.|3=opt=no-opt=1,; s_sess=%20s_ria%3Dflash%257CSilverlight%25204.0%3B%20s_campaign%3Dcof_2%3B%20s_cc%3Dtrue%3B%20ev1%3Dtv%253Ahome%3B%20s_sq%3D%3B; __utmz=30057196.1290273703.1.1.utmcsr=s0.2mdn.net|utmccn=(referral)|utmcmd=referral|utmcct=/1797755/Coffee_v1_300x250.swf; path_cookie=_news; BT=; oo_int_hit=1; oo_int_percent=0; rsi_segs=; s_vi=[CS]v1|267401DC851D2580-4000012F803267BB[CE]; OAX=rnneEkzoA7IACz4K; __utma=30057196.685584106.1290273703.1290273703.1290273703.1; __utmc=30057196; RMFD=011PJr8MO1021wJe; __utmb=30057196.3.9.1290273791381; opt=no-opt;

Response

HTTP/1.1 200 OK
Server: Sun-Java-System-Web-Server/7.0
ETag: W/"7c2fbc9b485c40658d7b857ff32c36a9"
X-runtime: 22
Content-Type: text/html; charset=utf-8
Proxy-agent: Sun-Java-System-Web-Server/7.0
Cache-Control: private, max-age=1
Date: Sat, 20 Nov 2010 18:21:15 GMT
Connection: close
Connection: Transfer-Encoding
Content-Length: 47791

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN"
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xmlns:og="http://opengraphprotocol.org/sc
...[SNIP]...
</script>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/main-min.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/ab-min.js" type="text/javascript"></script>
...[SNIP]...
<body class="news story">
<script src="http://www.googletagservices.com/tag/static/google_services.js" type="text/javascript"></script>
...[SNIP]...
</ul>


<script type="text/javascript" src="http://platform.twitter.com/widgets.js"></script>
...[SNIP]...
<div id="bloomberg-horizontal-rbox">
<script type="text/javascript" src="http://cdn.taboolasyndication.com/libtrc/bloomberg/rbox.js?article"></script>
...[SNIP]...
</script>
<script type="text/javascript" src="http://pagead2.googlesyndication.com/pagead/show_ads.js">
</script>
...[SNIP]...
</script>


<script type="text/javascript" src="http://static.newstogram.com/bloomberg-v3/js/histogram.js"></script>
...[SNIP]...
</noscript>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/s_code_p.js" type="text/javascript"></script> <link href="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_style.css" media="screen" rel="stylesheet" type="text/css" /> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_engine_c.js" type="text/javascript"></script> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_conf_en-US_inline.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script type="text/javascript" src="http://js.revsci.net/gateway/gw.js?csid=K05539"></script>
...[SNIP]...

4.93. http://www.bloomberg.com/news/2010-11-20/treasury-10-year-notes-fall-as-investors-back-federal-reserve-s-inflation.html  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.bloomberg.com
Path:   /news/2010-11-20/treasury-10-year-notes-fall-as-investors-back-federal-reserve-s-inflation.html

Issue detail

The response dynamically includes the following scripts from other domains:

Request

GET /news/2010-11-20/treasury-10-year-notes-fall-as-investors-back-federal-reserve-s-inflation.html HTTP/1.1
Host: www.bloomberg.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmv=30057196.|3=opt=no-opt=1,; s_sess=%20s_ria%3Dflash%257CSilverlight%25204.0%3B%20s_campaign%3Dcof_2%3B%20s_cc%3Dtrue%3B%20ev1%3Dtv%253Ahome%3B%20s_sq%3D%3B; __utmz=30057196.1290273703.1.1.utmcsr=s0.2mdn.net|utmccn=(referral)|utmcmd=referral|utmcct=/1797755/Coffee_v1_300x250.swf; path_cookie=_news; BT=; oo_int_hit=1; oo_int_percent=0; rsi_segs=; s_vi=[CS]v1|267401DC851D2580-4000012F803267BB[CE]; OAX=rnneEkzoA7IACz4K; __utma=30057196.685584106.1290273703.1290273703.1290273703.1; __utmc=30057196; RMFD=011PJr8MO1021wJe; __utmb=30057196.3.9.1290273791381; opt=no-opt;

Response

HTTP/1.1 200 OK
Server: Sun-Java-System-Web-Server/7.0
ETag: W/"df2ed3433e31f74618df8cc57fde5000"
X-runtime: 27
Content-Type: text/html; charset=utf-8
Proxy-agent: Sun-Java-System-Web-Server/7.0
Cache-Control: private, max-age=1
Date: Sat, 20 Nov 2010 18:21:10 GMT
Connection: close
Connection: Transfer-Encoding
Content-Length: 52482

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN"
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xmlns:og="http://opengraphprotocol.org/sc
...[SNIP]...
</script>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/main-min.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/ab-min.js" type="text/javascript"></script>
...[SNIP]...
<body class="news story">
<script src="http://www.googletagservices.com/tag/static/google_services.js" type="text/javascript"></script>
...[SNIP]...
</ul>


<script type="text/javascript" src="http://platform.twitter.com/widgets.js"></script>
...[SNIP]...
<div id="bloomberg-horizontal-rbox">
<script type="text/javascript" src="http://cdn.taboolasyndication.com/libtrc/bloomberg/rbox.js?article"></script>
...[SNIP]...
</script>
<script type="text/javascript" src="http://pagead2.googlesyndication.com/pagead/show_ads.js">
</script>
...[SNIP]...
</script>


<script type="text/javascript" src="http://static.newstogram.com/bloomberg-v3/js/histogram.js"></script>
...[SNIP]...
</noscript>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/s_code_p.js" type="text/javascript"></script> <link href="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_style.css" media="screen" rel="stylesheet" type="text/css" /> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_engine_c.js" type="text/javascript"></script> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_conf_en-US_inline.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script type="text/javascript" src="http://js.revsci.net/gateway/gw.js?csid=K05539"></script>
...[SNIP]...

4.94. http://www.bloomberg.com/news/bonds/  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.bloomberg.com
Path:   /news/bonds/

Issue detail

The response dynamically includes the following scripts from other domains:

Request

GET /news/bonds/ HTTP/1.1
Host: www.bloomberg.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmv=30057196.|3=opt=no-opt=1,; s_sess=%20s_ria%3Dflash%257CSilverlight%25204.0%3B%20s_campaign%3Dcof_2%3B%20s_cc%3Dtrue%3B%20ev1%3Dtv%253Ahome%3B%20s_sq%3D%3B; __utmz=30057196.1290273703.1.1.utmcsr=s0.2mdn.net|utmccn=(referral)|utmcmd=referral|utmcct=/1797755/Coffee_v1_300x250.swf; path_cookie=_news; BT=; oo_int_hit=1; oo_int_percent=0; rsi_segs=; s_vi=[CS]v1|267401DC851D2580-4000012F803267BB[CE]; OAX=rnneEkzoA7IACz4K; __utma=30057196.685584106.1290273703.1290273703.1290273703.1; __utmc=30057196; RMFD=011PJr8MO1021wJe; __utmb=30057196.3.9.1290273791381; opt=no-opt;

Response

HTTP/1.1 200 OK
Server: Sun-Java-System-Web-Server/7.0
ETag: W/"2686628cdd4b0243361b4607c1d41e9a"
X-runtime: 13
Content-Type: text/html; charset=utf-8
Proxy-agent: Sun-Java-System-Web-Server/7.0
Cache-Control: private, max-age=20
Date: Sat, 20 Nov 2010 18:21:39 GMT
Connection: close
Connection: Transfer-Encoding
Content-Length: 35698

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN"
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xmlns:og="http://opengraphprotocol.org/sc
...[SNIP]...
</script>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/main-min.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/ab-min.js" type="text/javascript"></script>
...[SNIP]...
<body class="news bonds">
<script src="http://www.googletagservices.com/tag/static/google_services.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script type="text/javascript" src="http://pagead2.googlesyndication.com/pagead/show_ads.js">
</script>
...[SNIP]...
</noscript>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/s_code_p.js" type="text/javascript"></script> <link href="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_style.css" media="screen" rel="stylesheet" type="text/css" /> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_engine_c.js" type="text/javascript"></script> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_conf_en-US_inline.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script type="text/javascript" src="http://js.revsci.net/gateway/gw.js?csid=K05539"></script>
...[SNIP]...

4.95. http://www.bloomberg.com/news/economy/  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.bloomberg.com
Path:   /news/economy/

Issue detail

The response dynamically includes the following scripts from other domains:

Request

GET /news/economy/ HTTP/1.1
Host: www.bloomberg.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmv=30057196.|3=opt=no-opt=1,; s_sess=%20s_ria%3Dflash%257CSilverlight%25204.0%3B%20s_campaign%3Dcof_2%3B%20s_cc%3Dtrue%3B%20ev1%3Dtv%253Ahome%3B%20s_sq%3D%3B; __utmz=30057196.1290273703.1.1.utmcsr=s0.2mdn.net|utmccn=(referral)|utmcmd=referral|utmcct=/1797755/Coffee_v1_300x250.swf; path_cookie=_news; BT=; oo_int_hit=1; oo_int_percent=0; rsi_segs=; s_vi=[CS]v1|267401DC851D2580-4000012F803267BB[CE]; OAX=rnneEkzoA7IACz4K; __utma=30057196.685584106.1290273703.1290273703.1290273703.1; __utmc=30057196; RMFD=011PJr8MO1021wJe; __utmb=30057196.3.9.1290273791381; opt=no-opt;

Response

HTTP/1.1 200 OK
Server: Sun-Java-System-Web-Server/7.0
ETag: W/"280639cc1790dc61c24637731c7228ab"
X-runtime: 14
Content-Type: text/html; charset=utf-8
Proxy-agent: Sun-Java-System-Web-Server/7.0
Cache-Control: private, max-age=85
Date: Sat, 20 Nov 2010 18:20:38 GMT
Connection: close
Connection: Transfer-Encoding
Content-Length: 38059

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN"
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xmlns:og="http://opengraphprotocol.org/sc
...[SNIP]...
</script>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/main-min.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/ab-min.js" type="text/javascript"></script>
...[SNIP]...
<body class="news economy">
<script src="http://www.googletagservices.com/tag/static/google_services.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script type="text/javascript" src="http://pagead2.googlesyndication.com/pagead/show_ads.js">
</script>
...[SNIP]...
</noscript>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/s_code_p.js" type="text/javascript"></script> <link href="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_style.css" media="screen" rel="stylesheet" type="text/css" /> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_engine_c.js" type="text/javascript"></script> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_conf_en-US_inline.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script type="text/javascript" src="http://js.revsci.net/gateway/gw.js?csid=K05539"></script>
...[SNIP]...

4.96. http://www.bloomberg.com/news/environment/  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.bloomberg.com
Path:   /news/environment/

Issue detail

The response dynamically includes the following scripts from other domains:

Request

GET /news/environment/ HTTP/1.1
Host: www.bloomberg.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmv=30057196.|3=opt=no-opt=1,; s_sess=%20s_ria%3Dflash%257CSilverlight%25204.0%3B%20s_campaign%3Dcof_2%3B%20s_cc%3Dtrue%3B%20ev1%3Dtv%253Ahome%3B%20s_sq%3D%3B; __utmz=30057196.1290273703.1.1.utmcsr=s0.2mdn.net|utmccn=(referral)|utmcmd=referral|utmcct=/1797755/Coffee_v1_300x250.swf; path_cookie=_news; BT=; oo_int_hit=1; oo_int_percent=0; rsi_segs=; s_vi=[CS]v1|267401DC851D2580-4000012F803267BB[CE]; OAX=rnneEkzoA7IACz4K; __utma=30057196.685584106.1290273703.1290273703.1290273703.1; __utmc=30057196; RMFD=011PJr8MO1021wJe; __utmb=30057196.3.9.1290273791381; opt=no-opt;

Response

HTTP/1.1 200 OK
Server: Sun-Java-System-Web-Server/7.0
ETag: W/"87d9845f1ae11180e5af1d20531966ae"
X-runtime: 13
Content-Type: text/html; charset=utf-8
Proxy-agent: Sun-Java-System-Web-Server/7.0
Cache-Control: private, max-age=17
Date: Sat, 20 Nov 2010 18:20:41 GMT
Connection: close
Connection: Transfer-Encoding
Content-Length: 36063

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN"
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xmlns:og="http://opengraphprotocol.org/sc
...[SNIP]...
</script>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/main-min.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/ab-min.js" type="text/javascript"></script>
...[SNIP]...
<body class="news environment">
<script src="http://www.googletagservices.com/tag/static/google_services.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script type="text/javascript" src="http://pagead2.googlesyndication.com/pagead/show_ads.js">
</script>
...[SNIP]...
</noscript>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/s_code_p.js" type="text/javascript"></script> <link href="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_style.css" media="screen" rel="stylesheet" type="text/css" /> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_engine_c.js" type="text/javascript"></script> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_conf_en-US_inline.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script type="text/javascript" src="http://js.revsci.net/gateway/gw.js?csid=K05539"></script>
...[SNIP]...

4.97. http://www.bloomberg.com/news/europe/  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.bloomberg.com
Path:   /news/europe/

Issue detail

The response dynamically includes the following scripts from other domains:

Request

GET /news/europe/ HTTP/1.1
Host: www.bloomberg.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmv=30057196.|3=opt=no-opt=1,; s_sess=%20s_ria%3Dflash%257CSilverlight%25204.0%3B%20s_campaign%3Dcof_2%3B%20s_cc%3Dtrue%3B%20ev1%3Dtv%253Ahome%3B%20s_sq%3D%3B; __utmz=30057196.1290273703.1.1.utmcsr=s0.2mdn.net|utmccn=(referral)|utmcmd=referral|utmcct=/1797755/Coffee_v1_300x250.swf; path_cookie=_news; BT=; oo_int_hit=1; oo_int_percent=0; rsi_segs=; s_vi=[CS]v1|267401DC851D2580-4000012F803267BB[CE]; OAX=rnneEkzoA7IACz4K; __utma=30057196.685584106.1290273703.1290273703.1290273703.1; __utmc=30057196; RMFD=011PJr8MO1021wJe; __utmb=30057196.3.9.1290273791381; opt=no-opt;

Response

HTTP/1.1 200 OK
Server: Sun-Java-System-Web-Server/7.0
ETag: W/"5653475f3d392c4b0756b8a743fad139"
X-runtime: 367
Content-Type: text/html; charset=utf-8
Proxy-agent: Sun-Java-System-Web-Server/7.0
Cache-Control: private, max-age=19
Date: Sat, 20 Nov 2010 18:21:38 GMT
Connection: close
Connection: Transfer-Encoding
Content-Length: 36454

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN"
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xmlns:og="http://opengraphprotocol.org/sc
...[SNIP]...
</script>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/main-min.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/ab-min.js" type="text/javascript"></script>
...[SNIP]...
<body class="news europe">
<script src="http://www.googletagservices.com/tag/static/google_services.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script type="text/javascript" src="http://pagead2.googlesyndication.com/pagead/show_ads.js">
</script>
...[SNIP]...
</noscript>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/s_code_p.js" type="text/javascript"></script> <link href="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_style.css" media="screen" rel="stylesheet" type="text/css" /> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_engine_c.js" type="text/javascript"></script> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_conf_en-US_inline.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script type="text/javascript" src="http://js.revsci.net/gateway/gw.js?csid=K05539"></script>
...[SNIP]...

4.98. http://www.bloomberg.com/news/exclusive/  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.bloomberg.com
Path:   /news/exclusive/

Issue detail

The response dynamically includes the following scripts from other domains:

Request

GET /news/exclusive/ HTTP/1.1
Host: www.bloomberg.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmv=30057196.|3=opt=no-opt=1,; s_sess=%20s_ria%3Dflash%257CSilverlight%25204.0%3B%20s_campaign%3Dcof_2%3B%20s_cc%3Dtrue%3B%20ev1%3Dtv%253Ahome%3B%20s_sq%3D%3B; __utmz=30057196.1290273703.1.1.utmcsr=s0.2mdn.net|utmccn=(referral)|utmcmd=referral|utmcct=/1797755/Coffee_v1_300x250.swf; path_cookie=_news; BT=; oo_int_hit=1; oo_int_percent=0; rsi_segs=; s_vi=[CS]v1|267401DC851D2580-4000012F803267BB[CE]; OAX=rnneEkzoA7IACz4K; __utma=30057196.685584106.1290273703.1290273703.1290273703.1; __utmc=30057196; RMFD=011PJr8MO1021wJe; __utmb=30057196.3.9.1290273791381; opt=no-opt;

Response

HTTP/1.1 200 OK
Server: Sun-Java-System-Web-Server/7.0
ETag: W/"947989ef32591da95a1e45cfbe894705"
X-runtime: 13
Content-Type: text/html; charset=utf-8
Proxy-agent: Sun-Java-System-Web-Server/7.0
Cache-Control: private, max-age=23
Date: Sat, 20 Nov 2010 18:20:30 GMT
Connection: close
Connection: Transfer-Encoding
Content-Length: 38091

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN"
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xmlns:og="http://opengraphprotocol.org/sc
...[SNIP]...
</script>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/main-min.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/ab-min.js" type="text/javascript"></script>
...[SNIP]...
<body class="news exclusive">
<script src="http://www.googletagservices.com/tag/static/google_services.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script type="text/javascript" src="http://pagead2.googlesyndication.com/pagead/show_ads.js">
</script>
...[SNIP]...
</noscript>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/s_code_p.js" type="text/javascript"></script> <link href="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_style.css" media="screen" rel="stylesheet" type="text/css" /> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_engine_c.js" type="text/javascript"></script> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_conf_en-US_inline.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script type="text/javascript" src="http://js.revsci.net/gateway/gw.js?csid=K05539"></script>
...[SNIP]...

4.99. http://www.bloomberg.com/news/finance/  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.bloomberg.com
Path:   /news/finance/

Issue detail

The response dynamically includes the following scripts from other domains:

Request

GET /news/finance/ HTTP/1.1
Host: www.bloomberg.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmv=30057196.|3=opt=no-opt=1,; s_sess=%20s_ria%3Dflash%257CSilverlight%25204.0%3B%20s_campaign%3Dcof_2%3B%20s_cc%3Dtrue%3B%20ev1%3Dtv%253Ahome%3B%20s_sq%3D%3B; __utmz=30057196.1290273703.1.1.utmcsr=s0.2mdn.net|utmccn=(referral)|utmcmd=referral|utmcct=/1797755/Coffee_v1_300x250.swf; path_cookie=_news; BT=; oo_int_hit=1; oo_int_percent=0; rsi_segs=; s_vi=[CS]v1|267401DC851D2580-4000012F803267BB[CE]; OAX=rnneEkzoA7IACz4K; __utma=30057196.685584106.1290273703.1290273703.1290273703.1; __utmc=30057196; RMFD=011PJr8MO1021wJe; __utmb=30057196.3.9.1290273791381; opt=no-opt;

Response

HTTP/1.1 200 OK
Server: Sun-Java-System-Web-Server/7.0
ETag: W/"b560be7c69e5880218e31c8d821d08ac"
X-runtime: 447
Content-Type: text/html; charset=utf-8
Proxy-agent: Sun-Java-System-Web-Server/7.0
Cache-Control: private, max-age=71
Date: Sat, 20 Nov 2010 18:21:39 GMT
Connection: close
Connection: Transfer-Encoding
Content-Length: 38852

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN"
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xmlns:og="http://opengraphprotocol.org/sc
...[SNIP]...
</script>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/main-min.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/ab-min.js" type="text/javascript"></script>
...[SNIP]...
<body class="news finance">
<script src="http://www.googletagservices.com/tag/static/google_services.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script type="text/javascript" src="http://pagead2.googlesyndication.com/pagead/show_ads.js">
</script>
...[SNIP]...
</noscript>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/s_code_p.js" type="text/javascript"></script> <link href="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_style.css" media="screen" rel="stylesheet" type="text/css" /> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_engine_c.js" type="text/javascript"></script> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_conf_en-US_inline.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script type="text/javascript" src="http://js.revsci.net/gateway/gw.js?csid=K05539"></script>
...[SNIP]...

4.100. http://www.bloomberg.com/news/france/  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.bloomberg.com
Path:   /news/france/

Issue detail

The response dynamically includes the following scripts from other domains:

Request

GET /news/france/ HTTP/1.1
Host: www.bloomberg.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmv=30057196.|3=opt=no-opt=1,; s_sess=%20s_ria%3Dflash%257CSilverlight%25204.0%3B%20s_campaign%3Dcof_2%3B%20s_cc%3Dtrue%3B%20ev1%3Dtv%253Ahome%3B%20s_sq%3D%3B; __utmz=30057196.1290273703.1.1.utmcsr=s0.2mdn.net|utmccn=(referral)|utmcmd=referral|utmcct=/1797755/Coffee_v1_300x250.swf; path_cookie=_news; BT=; oo_int_hit=1; oo_int_percent=0; rsi_segs=; s_vi=[CS]v1|267401DC851D2580-4000012F803267BB[CE]; OAX=rnneEkzoA7IACz4K; __utma=30057196.685584106.1290273703.1290273703.1290273703.1; __utmc=30057196; RMFD=011PJr8MO1021wJe; __utmb=30057196.3.9.1290273791381; opt=no-opt;

Response

HTTP/1.1 200 OK
Server: Sun-Java-System-Web-Server/7.0
ETag: W/"0978dd3612251dcca7f150d4dfe4b336"
X-runtime: 13
Content-Type: text/html; charset=utf-8
Proxy-agent: Sun-Java-System-Web-Server/7.0
Cache-Control: private, max-age=20
Date: Sat, 20 Nov 2010 18:21:38 GMT
Connection: close
Connection: Transfer-Encoding
Content-Length: 36647

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN"
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xmlns:og="http://opengraphprotocol.org/sc
...[SNIP]...
</script>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/main-min.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/ab-min.js" type="text/javascript"></script>
...[SNIP]...
<body class="news france">
<script src="http://www.googletagservices.com/tag/static/google_services.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script type="text/javascript" src="http://pagead2.googlesyndication.com/pagead/show_ads.js">
</script>
...[SNIP]...
</noscript>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/s_code_p.js" type="text/javascript"></script> <link href="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_style.css" media="screen" rel="stylesheet" type="text/css" /> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_engine_c.js" type="text/javascript"></script> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_conf_en-US_inline.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script type="text/javascript" src="http://js.revsci.net/gateway/gw.js?csid=K05539"></script>
...[SNIP]...

4.101. http://www.bloomberg.com/news/germany/  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.bloomberg.com
Path:   /news/germany/

Issue detail

The response dynamically includes the following scripts from other domains:

Request

GET /news/germany/ HTTP/1.1
Host: www.bloomberg.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmv=30057196.|3=opt=no-opt=1,; s_sess=%20s_ria%3Dflash%257CSilverlight%25204.0%3B%20s_campaign%3Dcof_2%3B%20s_cc%3Dtrue%3B%20ev1%3Dtv%253Ahome%3B%20s_sq%3D%3B; __utmz=30057196.1290273703.1.1.utmcsr=s0.2mdn.net|utmccn=(referral)|utmcmd=referral|utmcct=/1797755/Coffee_v1_300x250.swf; path_cookie=_news; BT=; oo_int_hit=1; oo_int_percent=0; rsi_segs=; s_vi=[CS]v1|267401DC851D2580-4000012F803267BB[CE]; OAX=rnneEkzoA7IACz4K; __utma=30057196.685584106.1290273703.1290273703.1290273703.1; __utmc=30057196; RMFD=011PJr8MO1021wJe; __utmb=30057196.3.9.1290273791381; opt=no-opt;

Response

HTTP/1.1 200 OK
Server: Sun-Java-System-Web-Server/7.0
ETag: W/"7cec10e2d442990ae1b92868161c2803"
X-runtime: 372
Content-Type: text/html; charset=utf-8
Proxy-agent: Sun-Java-System-Web-Server/7.0
Cache-Control: private, max-age=49
Date: Sat, 20 Nov 2010 18:21:38 GMT
Connection: close
Connection: Transfer-Encoding
Content-Length: 37696

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN"
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xmlns:og="http://opengraphprotocol.org/sc
...[SNIP]...
</script>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/main-min.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/ab-min.js" type="text/javascript"></script>
...[SNIP]...
<body class="news germany">
<script src="http://www.googletagservices.com/tag/static/google_services.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script type="text/javascript" src="http://pagead2.googlesyndication.com/pagead/show_ads.js">
</script>
...[SNIP]...
</noscript>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/s_code_p.js" type="text/javascript"></script> <link href="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_style.css" media="screen" rel="stylesheet" type="text/css" /> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_engine_c.js" type="text/javascript"></script> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_conf_en-US_inline.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script type="text/javascript" src="http://js.revsci.net/gateway/gw.js?csid=K05539"></script>
...[SNIP]...

4.102. http://www.bloomberg.com/news/health-care/  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.bloomberg.com
Path:   /news/health-care/

Issue detail

The response dynamically includes the following scripts from other domains:

Request

GET /news/health-care/ HTTP/1.1
Host: www.bloomberg.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmv=30057196.|3=opt=no-opt=1,; s_sess=%20s_ria%3Dflash%257CSilverlight%25204.0%3B%20s_campaign%3Dcof_2%3B%20s_cc%3Dtrue%3B%20ev1%3Dtv%253Ahome%3B%20s_sq%3D%3B; __utmz=30057196.1290273703.1.1.utmcsr=s0.2mdn.net|utmccn=(referral)|utmcmd=referral|utmcct=/1797755/Coffee_v1_300x250.swf; path_cookie=_news; BT=; oo_int_hit=1; oo_int_percent=0; rsi_segs=; s_vi=[CS]v1|267401DC851D2580-4000012F803267BB[CE]; OAX=rnneEkzoA7IACz4K; __utma=30057196.685584106.1290273703.1290273703.1290273703.1; __utmc=30057196; RMFD=011PJr8MO1021wJe; __utmb=30057196.3.9.1290273791381; opt=no-opt;

Response

HTTP/1.1 200 OK
Server: Sun-Java-System-Web-Server/7.0
ETag: W/"de5bfbd8597ea58b7c3206bbad4edc83"
X-runtime: 371
Content-Type: text/html; charset=utf-8
Proxy-agent: Sun-Java-System-Web-Server/7.0
Cache-Control: private, max-age=46
Date: Sat, 20 Nov 2010 18:21:37 GMT
Connection: close
Connection: Transfer-Encoding
Content-Length: 38023

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN"
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xmlns:og="http://opengraphprotocol.org/sc
...[SNIP]...
</script>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/main-min.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/ab-min.js" type="text/javascript"></script>
...[SNIP]...
<body class="news health-care">
<script src="http://www.googletagservices.com/tag/static/google_services.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script type="text/javascript" src="http://pagead2.googlesyndication.com/pagead/show_ads.js">
</script>
...[SNIP]...
</noscript>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/s_code_p.js" type="text/javascript"></script> <link href="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_style.css" media="screen" rel="stylesheet" type="text/css" /> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_engine_c.js" type="text/javascript"></script> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_conf_en-US_inline.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script type="text/javascript" src="http://js.revsci.net/gateway/gw.js?csid=K05539"></script>
...[SNIP]...

4.103. http://www.bloomberg.com/news/industries/  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.bloomberg.com
Path:   /news/industries/

Issue detail

The response dynamically includes the following scripts from other domains:

Request

GET /news/industries/ HTTP/1.1
Host: www.bloomberg.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmv=30057196.|3=opt=no-opt=1,; s_sess=%20s_ria%3Dflash%257CSilverlight%25204.0%3B%20s_campaign%3Dcof_2%3B%20s_cc%3Dtrue%3B%20ev1%3Dtv%253Ahome%3B%20s_sq%3D%3B; __utmz=30057196.1290273703.1.1.utmcsr=s0.2mdn.net|utmccn=(referral)|utmcmd=referral|utmcct=/1797755/Coffee_v1_300x250.swf; path_cookie=_news; BT=; oo_int_hit=1; oo_int_percent=0; rsi_segs=; s_vi=[CS]v1|267401DC851D2580-4000012F803267BB[CE]; OAX=rnneEkzoA7IACz4K; __utma=30057196.685584106.1290273703.1290273703.1290273703.1; __utmc=30057196; RMFD=011PJr8MO1021wJe; __utmb=30057196.3.9.1290273791381; opt=no-opt;

Response

HTTP/1.1 200 OK
Server: Sun-Java-System-Web-Server/7.0
ETag: W/"da89e78f31f06abdb4ecc24fc9a6fe0c"
X-runtime: 199
Content-Type: text/html; charset=utf-8
Proxy-agent: Sun-Java-System-Web-Server/7.0
Cache-Control: private, max-age=25
Date: Sat, 20 Nov 2010 18:20:36 GMT
Connection: close
Connection: Transfer-Encoding
Content-Length: 64948

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN"
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xmlns:og="http://opengraphprotocol.org/sc
...[SNIP]...
</script>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/main-min.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/ab-min.js" type="text/javascript"></script>
...[SNIP]...
<body class="news industries">
<script src="http://www.googletagservices.com/tag/static/google_services.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script type="text/javascript" src="http://pagead2.googlesyndication.com/pagead/show_ads.js">
</script>
...[SNIP]...
</noscript>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/s_code_p.js" type="text/javascript"></script> <link href="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_style.css" media="screen" rel="stylesheet" type="text/css" /> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_engine_c.js" type="text/javascript"></script> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_conf_en-US_inline.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script type="text/javascript" src="http://js.revsci.net/gateway/gw.js?csid=K05539"></script>
...[SNIP]...

4.104. http://www.bloomberg.com/news/industries/finance/story  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.bloomberg.com
Path:   /news/industries/finance/story

Issue detail

The response dynamically includes the following scripts from other domains:

Request

GET /news/industries/finance/story HTTP/1.1
Host: www.bloomberg.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmv=30057196.|3=opt=no-opt=1,; s_sess=%20s_ria%3Dflash%257CSilverlight%25204.0%3B%20s_campaign%3Dcof_2%3B%20s_cc%3Dtrue%3B%20ev1%3Dtv%253Ahome%3B%20s_sq%3D%3B; __utmz=30057196.1290273703.1.1.utmcsr=s0.2mdn.net|utmccn=(referral)|utmcmd=referral|utmcct=/1797755/Coffee_v1_300x250.swf; path_cookie=_news; BT=; oo_int_hit=1; oo_int_percent=0; rsi_segs=; s_vi=[CS]v1|267401DC851D2580-4000012F803267BB[CE]; OAX=rnneEkzoA7IACz4K; __utma=30057196.685584106.1290273703.1290273703.1290273703.1; __utmc=30057196; RMFD=011PJr8MO1021wJe; __utmb=30057196.3.9.1290273791381; opt=no-opt;

Response

HTTP/1.1 404 Not Found
Server: Sun-Java-System-Web-Server/7.0
Proxy-agent: Sun-Java-System-Web-Server/7.0
Content-Type: text/html; charset=utf-8
Cache-Control: no-cache
Date: Sat, 20 Nov 2010 18:20:37 GMT
Content-Length: 20712
Connection: close

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN"
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xmlns:og="http://opengraphprotocol.org/sc
...[SNIP]...
</script>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/main-min.js" type="text/javascript"></script> <script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/ab-min.js" type="text/javascript"></script>
...[SNIP]...
<body class="">
<script src="http://www.googletagservices.com/tag/static/google_services.js" type="text/javascript"></script>
...[SNIP]...
</noscript>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/s_code_p.js" type="text/javascript"></script> <link href="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_style.css" media="screen" rel="stylesheet" type="text/css" /> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_engine_c.js" type="text/javascript"></script> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_conf_en-US_inline.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script type="text/javascript" src="http://js.revsci.net/gateway/gw.js?csid=K05539"></script>
...[SNIP]...

4.105. http://www.bloomberg.com/news/law/  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.bloomberg.com
Path:   /news/law/

Issue detail

The response dynamically includes the following scripts from other domains:

Request

GET /news/law/ HTTP/1.1
Host: www.bloomberg.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmv=30057196.|3=opt=no-opt=1,; s_sess=%20s_ria%3Dflash%257CSilverlight%25204.0%3B%20s_campaign%3Dcof_2%3B%20s_cc%3Dtrue%3B%20ev1%3Dtv%253Ahome%3B%20s_sq%3D%3B; __utmz=30057196.1290273703.1.1.utmcsr=s0.2mdn.net|utmccn=(referral)|utmcmd=referral|utmcct=/1797755/Coffee_v1_300x250.swf; path_cookie=_news; BT=; oo_int_hit=1; oo_int_percent=0; rsi_segs=; s_vi=[CS]v1|267401DC851D2580-4000012F803267BB[CE]; OAX=rnneEkzoA7IACz4K; __utma=30057196.685584106.1290273703.1290273703.1290273703.1; __utmc=30057196; RMFD=011PJr8MO1021wJe; __utmb=30057196.3.9.1290273791381; opt=no-opt;

Response

HTTP/1.1 200 OK
Server: Sun-Java-System-Web-Server/7.0
ETag: W/"947d9cdb677a4e1b1fb9410584d4bd83"
X-runtime: 14
Content-Type: text/html; charset=utf-8
Proxy-agent: Sun-Java-System-Web-Server/7.0
Cache-Control: private, max-age=4
Date: Sat, 20 Nov 2010 18:20:40 GMT
Connection: close
Connection: Transfer-Encoding
Content-Length: 36659

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN"
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xmlns:og="http://opengraphprotocol.org/sc
...[SNIP]...
</script>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/main-min.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/ab-min.js" type="text/javascript"></script>
...[SNIP]...
<body class="news law">
<script src="http://www.googletagservices.com/tag/static/google_services.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script type="text/javascript" src="http://pagead2.googlesyndication.com/pagead/show_ads.js">
</script>
...[SNIP]...
</noscript>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/s_code_p.js" type="text/javascript"></script> <link href="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_style.css" media="screen" rel="stylesheet" type="text/css" /> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_engine_c.js" type="text/javascript"></script> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_conf_en-US_inline.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script type="text/javascript" src="http://js.revsci.net/gateway/gw.js?csid=K05539"></script>
...[SNIP]...

4.106. http://www.bloomberg.com/news/markets/  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.bloomberg.com
Path:   /news/markets/

Issue detail

The response dynamically includes the following scripts from other domains:

Request

GET /news/markets/ HTTP/1.1
Host: www.bloomberg.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmv=30057196.|3=opt=no-opt=1,; s_sess=%20s_ria%3Dflash%257CSilverlight%25204.0%3B%20s_campaign%3Dcof_2%3B%20s_cc%3Dtrue%3B%20ev1%3Dtv%253Ahome%3B%20s_sq%3D%3B; __utmz=30057196.1290273703.1.1.utmcsr=s0.2mdn.net|utmccn=(referral)|utmcmd=referral|utmcct=/1797755/Coffee_v1_300x250.swf; path_cookie=_news; BT=; oo_int_hit=1; oo_int_percent=0; rsi_segs=; s_vi=[CS]v1|267401DC851D2580-4000012F803267BB[CE]; OAX=rnneEkzoA7IACz4K; __utma=30057196.685584106.1290273703.1290273703.1290273703.1; __utmc=30057196; RMFD=011PJr8MO1021wJe; __utmb=30057196.3.9.1290273791381; opt=no-opt;

Response

HTTP/1.1 200 OK
Server: Sun-Java-System-Web-Server/7.0
ETag: W/"906106bd943f22502dd40bdf81612374"
X-runtime: 1312
Content-Type: text/html; charset=utf-8
Proxy-agent: Sun-Java-System-Web-Server/7.0
Cache-Control: private, max-age=81
Date: Sat, 20 Nov 2010 18:20:33 GMT
Connection: close
Connection: Transfer-Encoding
Content-Length: 53184

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN"
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xmlns:og="http://opengraphprotocol.org/sc
...[SNIP]...
</script>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/main-min.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/ab-min.js" type="text/javascript"></script>
...[SNIP]...
<body class="news markets-news">
<script src="http://www.googletagservices.com/tag/static/google_services.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script type="text/javascript" src="http://pagead2.googlesyndication.com/pagead/show_ads.js">
</script>
...[SNIP]...
</noscript>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/s_code_p.js" type="text/javascript"></script> <link href="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_style.css" media="screen" rel="stylesheet" type="text/css" /> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_engine_c.js" type="text/javascript"></script> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_conf_en-US_inline.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script type="text/javascript" src="http://js.revsci.net/gateway/gw.js?csid=K05539"></script>
...[SNIP]...

4.107. http://www.bloomberg.com/news/personal-finance/  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.bloomberg.com
Path:   /news/personal-finance/

Issue detail

The response dynamically includes the following scripts from other domains:

Request

GET /news/personal-finance/ HTTP/1.1
Host: www.bloomberg.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmv=30057196.|3=opt=no-opt=1,; s_sess=%20s_ria%3Dflash%257CSilverlight%25204.0%3B%20s_campaign%3Dcof_2%3B%20s_cc%3Dtrue%3B%20ev1%3Dtv%253Ahome%3B%20s_sq%3D%3B; __utmz=30057196.1290273703.1.1.utmcsr=s0.2mdn.net|utmccn=(referral)|utmcmd=referral|utmcct=/1797755/Coffee_v1_300x250.swf; path_cookie=_news; BT=; oo_int_hit=1; oo_int_percent=0; rsi_segs=; s_vi=[CS]v1|267401DC851D2580-4000012F803267BB[CE]; OAX=rnneEkzoA7IACz4K; __utma=30057196.685584106.1290273703.1290273703.1290273703.1; __utmc=30057196; RMFD=011PJr8MO1021wJe; __utmb=30057196.3.9.1290273791381; opt=no-opt;

Response

HTTP/1.1 200 OK
Server: Sun-Java-System-Web-Server/7.0
ETag: W/"13def15dd822c5980ebc4a6c9817b0f7"
X-runtime: 489
Content-Type: text/html; charset=utf-8
Proxy-agent: Sun-Java-System-Web-Server/7.0
Cache-Control: private, max-age=18
Date: Sat, 20 Nov 2010 18:21:29 GMT
Connection: close
Connection: Transfer-Encoding
Content-Length: 38560

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN"
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xmlns:og="http://opengraphprotocol.org/sc
...[SNIP]...
</script>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/main-min.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/ab-min.js" type="text/javascript"></script>
...[SNIP]...
<body class="news personal-finance-news">
<script src="http://www.googletagservices.com/tag/static/google_services.js" type="text/javascript"></script>
...[SNIP]...
</div>


<script type="text/javascript" src="http://jlinks.industrybrains.com/jsct?sid=942&amp;ct=BLOOMBERG_PERSONAL_FINANCE&amp;tr=BLOOMBERG_PF_NEWS&amp;num=5&amp;layt=1&amp;fmt=simp"></script>
...[SNIP]...
</script>
<script type="text/javascript" src="http://pagead2.googlesyndication.com/pagead/show_ads.js">
</script>
...[SNIP]...
</noscript>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/s_code_p.js" type="text/javascript"></script> <link href="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_style.css" media="screen" rel="stylesheet" type="text/css" /> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_engine_c.js" type="text/javascript"></script> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_conf_en-US_inline.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script type="text/javascript" src="http://js.revsci.net/gateway/gw.js?csid=K05539"></script>
...[SNIP]...

4.108. http://www.bloomberg.com/news/politics/  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.bloomberg.com
Path:   /news/politics/

Issue detail

The response dynamically includes the following scripts from other domains:

Request

GET /news/politics/ HTTP/1.1
Host: www.bloomberg.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmv=30057196.|3=opt=no-opt=1,; s_sess=%20s_ria%3Dflash%257CSilverlight%25204.0%3B%20s_campaign%3Dcof_2%3B%20s_cc%3Dtrue%3B%20ev1%3Dtv%253Ahome%3B%20s_sq%3D%3B; __utmz=30057196.1290273703.1.1.utmcsr=s0.2mdn.net|utmccn=(referral)|utmcmd=referral|utmcct=/1797755/Coffee_v1_300x250.swf; path_cookie=_news; BT=; oo_int_hit=1; oo_int_percent=0; rsi_segs=; s_vi=[CS]v1|267401DC851D2580-4000012F803267BB[CE]; OAX=rnneEkzoA7IACz4K; __utma=30057196.685584106.1290273703.1290273703.1290273703.1; __utmc=30057196; RMFD=011PJr8MO1021wJe; __utmb=30057196.3.9.1290273791381; opt=no-opt;

Response

HTTP/1.1 200 OK
Server: Sun-Java-System-Web-Server/7.0
ETag: W/"a32c729b097453e4f1df48f7a4189b80"
X-runtime: 400
Content-Type: text/html; charset=utf-8
Proxy-agent: Sun-Java-System-Web-Server/7.0
Cache-Control: private, max-age=24
Date: Sat, 20 Nov 2010 18:20:38 GMT
Connection: close
Connection: Transfer-Encoding
Content-Length: 37976

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN"
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xmlns:og="http://opengraphprotocol.org/sc
...[SNIP]...
</script>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/main-min.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/ab-min.js" type="text/javascript"></script>
...[SNIP]...
<body class="news politics">
<script src="http://www.googletagservices.com/tag/static/google_services.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script type="text/javascript" src="http://pagead2.googlesyndication.com/pagead/show_ads.js">
</script>
...[SNIP]...
</noscript>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/s_code_p.js" type="text/javascript"></script> <link href="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_style.css" media="screen" rel="stylesheet" type="text/css" /> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_engine_c.js" type="text/javascript"></script> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_conf_en-US_inline.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script type="text/javascript" src="http://js.revsci.net/gateway/gw.js?csid=K05539"></script>
...[SNIP]...

4.109. http://www.bloomberg.com/news/print/2010-11-20/irish-corporate-tax-rate-increase-isn-t-a-condition-for-aid-sarkozy-says.html  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.bloomberg.com
Path:   /news/print/2010-11-20/irish-corporate-tax-rate-increase-isn-t-a-condition-for-aid-sarkozy-says.html

Issue detail

The response dynamically includes the following scripts from other domains:

Request

GET /news/print/2010-11-20/irish-corporate-tax-rate-increase-isn-t-a-condition-for-aid-sarkozy-says.html HTTP/1.1
Host: www.bloomberg.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmv=30057196.|3=opt=no-opt=1,; s_sess=%20s_ria%3Dflash%257CSilverlight%25204.0%3B%20s_campaign%3Dcof_2%3B%20s_cc%3Dtrue%3B%20ev1%3Dtv%253Ahome%3B%20s_sq%3D%3B; __utmz=30057196.1290273703.1.1.utmcsr=s0.2mdn.net|utmccn=(referral)|utmcmd=referral|utmcct=/1797755/Coffee_v1_300x250.swf; path_cookie=_news; BT=; oo_int_hit=1; oo_int_percent=0; rsi_segs=; s_vi=[CS]v1|267401DC851D2580-4000012F803267BB[CE]; OAX=rnneEkzoA7IACz4K; __utma=30057196.685584106.1290273703.1290273703.1290273703.1; __utmc=30057196; RMFD=011PJr8MO1021wJe; __utmb=30057196.3.9.1290273791381; opt=no-opt;

Response

HTTP/1.1 200 OK
Server: Sun-Java-System-Web-Server/7.0
ETag: W/"e74b46984f334b1d70484a73c20c9809"
X-runtime: 129
Content-Type: text/html; charset=utf-8
Proxy-agent: Sun-Java-System-Web-Server/7.0
Cache-Control: private, max-age=6
Date: Sat, 20 Nov 2010 18:21:40 GMT
Content-Length: 15699
Connection: close


<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN"
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Type
...[SNIP]...
</script>

<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/main-min.js" type="text/javascript"></script>
...[SNIP]...
<body class=" print_page">

<script src="http://www.googletagservices.com/tag/static/google_services.js" type="text/javascript"></script>
...[SNIP]...
</noscript>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/s_code_p.js" type="text/javascript"></script> <link href="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_style.css" media="screen" rel="stylesheet" type="text/css" /> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_engine_c.js" type="text/javascript"></script> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_conf_en-US_inline.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script type="text/javascript" src="http://js.revsci.net/gateway/gw.js?csid=K05539"></script>
...[SNIP]...

4.110. http://www.bloomberg.com/news/regions/  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.bloomberg.com
Path:   /news/regions/

Issue detail

The response dynamically includes the following scripts from other domains:

Request

GET /news/regions/ HTTP/1.1
Host: www.bloomberg.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmv=30057196.|3=opt=no-opt=1,; s_sess=%20s_ria%3Dflash%257CSilverlight%25204.0%3B%20s_campaign%3Dcof_2%3B%20s_cc%3Dtrue%3B%20ev1%3Dtv%253Ahome%3B%20s_sq%3D%3B; __utmz=30057196.1290273703.1.1.utmcsr=s0.2mdn.net|utmccn=(referral)|utmcmd=referral|utmcct=/1797755/Coffee_v1_300x250.swf; path_cookie=_news; BT=; oo_int_hit=1; oo_int_percent=0; rsi_segs=; s_vi=[CS]v1|267401DC851D2580-4000012F803267BB[CE]; OAX=rnneEkzoA7IACz4K; __utma=30057196.685584106.1290273703.1290273703.1290273703.1; __utmc=30057196; RMFD=011PJr8MO1021wJe; __utmb=30057196.3.9.1290273791381; opt=no-opt;

Response

HTTP/1.1 200 OK
Server: Sun-Java-System-Web-Server/7.0
ETag: W/"61985b0f8c2a8a7d219124b2911dbfd9"
X-runtime: 225
Content-Type: text/html; charset=utf-8
Proxy-agent: Sun-Java-System-Web-Server/7.0
Cache-Control: private, max-age=26
Date: Sat, 20 Nov 2010 18:20:33 GMT
Connection: close
Connection: Transfer-Encoding
Content-Length: 60961

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN"
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xmlns:og="http://opengraphprotocol.org/sc
...[SNIP]...
</script>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/main-min.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/ab-min.js" type="text/javascript"></script>
...[SNIP]...
<body class="news regions">
<script src="http://www.googletagservices.com/tag/static/google_services.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script type="text/javascript" src="http://pagead2.googlesyndication.com/pagead/show_ads.js">
</script>
...[SNIP]...
</noscript>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/s_code_p.js" type="text/javascript"></script> <link href="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_style.css" media="screen" rel="stylesheet" type="text/css" /> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_engine_c.js" type="text/javascript"></script> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_conf_en-US_inline.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script type="text/javascript" src="http://js.revsci.net/gateway/gw.js?csid=K05539"></script>
...[SNIP]...

4.111. http://www.bloomberg.com/news/science/  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.bloomberg.com
Path:   /news/science/

Issue detail

The response dynamically includes the following scripts from other domains:

Request

GET /news/science/ HTTP/1.1
Host: www.bloomberg.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmv=30057196.|3=opt=no-opt=1,; s_sess=%20s_ria%3Dflash%257CSilverlight%25204.0%3B%20s_campaign%3Dcof_2%3B%20s_cc%3Dtrue%3B%20ev1%3Dtv%253Ahome%3B%20s_sq%3D%3B; __utmz=30057196.1290273703.1.1.utmcsr=s0.2mdn.net|utmccn=(referral)|utmcmd=referral|utmcct=/1797755/Coffee_v1_300x250.swf; path_cookie=_news; BT=; oo_int_hit=1; oo_int_percent=0; rsi_segs=; s_vi=[CS]v1|267401DC851D2580-4000012F803267BB[CE]; OAX=rnneEkzoA7IACz4K; __utma=30057196.685584106.1290273703.1290273703.1290273703.1; __utmc=30057196; RMFD=011PJr8MO1021wJe; __utmb=30057196.3.9.1290273791381; opt=no-opt;

Response

HTTP/1.1 200 OK
Server: Sun-Java-System-Web-Server/7.0
ETag: W/"d79ba38ae9db41612021d6a091027ce1"
X-runtime: 275
Content-Type: text/html; charset=utf-8
Proxy-agent: Sun-Java-System-Web-Server/7.0
Cache-Control: private, max-age=18
Date: Sat, 20 Nov 2010 18:20:42 GMT
Connection: close
Connection: Transfer-Encoding
Content-Length: 36052

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN"
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xmlns:og="http://opengraphprotocol.org/sc
...[SNIP]...
</script>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/main-min.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/ab-min.js" type="text/javascript"></script>
...[SNIP]...
<body class="news science">
<script src="http://www.googletagservices.com/tag/static/google_services.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script type="text/javascript" src="http://pagead2.googlesyndication.com/pagead/show_ads.js">
</script>
...[SNIP]...
</noscript>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/s_code_p.js" type="text/javascript"></script> <link href="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_style.css" media="screen" rel="stylesheet" type="text/css" /> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_engine_c.js" type="text/javascript"></script> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_conf_en-US_inline.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script type="text/javascript" src="http://js.revsci.net/gateway/gw.js?csid=K05539"></script>
...[SNIP]...

4.112. http://www.bloomberg.com/news/stocks-on-the-move/  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.bloomberg.com
Path:   /news/stocks-on-the-move/

Issue detail

The response dynamically includes the following scripts from other domains:

Request

GET /news/stocks-on-the-move/ HTTP/1.1
Host: www.bloomberg.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmv=30057196.|3=opt=no-opt=1,; s_sess=%20s_ria%3Dflash%257CSilverlight%25204.0%3B%20s_campaign%3Dcof_2%3B%20s_cc%3Dtrue%3B%20ev1%3Dtv%253Ahome%3B%20s_sq%3D%3B; __utmz=30057196.1290273703.1.1.utmcsr=s0.2mdn.net|utmccn=(referral)|utmcmd=referral|utmcct=/1797755/Coffee_v1_300x250.swf; path_cookie=_news; BT=; oo_int_hit=1; oo_int_percent=0; rsi_segs=; s_vi=[CS]v1|267401DC851D2580-4000012F803267BB[CE]; OAX=rnneEkzoA7IACz4K; __utma=30057196.685584106.1290273703.1290273703.1290273703.1; __utmc=30057196; RMFD=011PJr8MO1021wJe; __utmb=30057196.3.9.1290273791381; opt=no-opt;

Response

HTTP/1.1 200 OK
Server: Sun-Java-System-Web-Server/7.0
ETag: W/"97d07054cccee5511e880513b9e0f415"
X-runtime: 428
Content-Type: text/html; charset=utf-8
Proxy-agent: Sun-Java-System-Web-Server/7.0
Cache-Control: private, max-age=19
Date: Sat, 20 Nov 2010 18:21:37 GMT
Connection: close
Connection: Transfer-Encoding
Content-Length: 53321

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN"
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xmlns:og="http://opengraphprotocol.org/sc
...[SNIP]...
</script>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/main-min.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/ab-min.js" type="text/javascript"></script>
...[SNIP]...
<body class="stock_on_the_move">
<script src="http://www.googletagservices.com/tag/static/google_services.js" type="text/javascript"></script>
...[SNIP]...
</ul>


<script type="text/javascript" src="http://platform.twitter.com/widgets.js"></script>
...[SNIP]...
<div id="bloomberg-horizontal-rbox">
<script type="text/javascript" src="http://cdn.taboolasyndication.com/libtrc/bloomberg/rbox.js?article"></script>
...[SNIP]...
</script>
<script type="text/javascript" src="http://pagead2.googlesyndication.com/pagead/show_ads.js">
</script>
...[SNIP]...
</script>


<script type="text/javascript" src="http://static.newstogram.com/bloomberg-v3/js/histogram.js"></script>
...[SNIP]...
</noscript>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/s_code_p.js" type="text/javascript"></script> <link href="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_style.css" media="screen" rel="stylesheet" type="text/css" /> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_engine_c.js" type="text/javascript"></script> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_conf_en-US_inline.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script type="text/javascript" src="http://js.revsci.net/gateway/gw.js?csid=K05539"></script>
...[SNIP]...

4.113. http://www.bloomberg.com/news/technology/  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.bloomberg.com
Path:   /news/technology/

Issue detail

The response dynamically includes the following scripts from other domains:

Request

GET /news/technology/ HTTP/1.1
Host: www.bloomberg.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmv=30057196.|3=opt=no-opt=1,; s_sess=%20s_ria%3Dflash%257CSilverlight%25204.0%3B%20s_campaign%3Dcof_2%3B%20s_cc%3Dtrue%3B%20ev1%3Dtv%253Ahome%3B%20s_sq%3D%3B; __utmz=30057196.1290273703.1.1.utmcsr=s0.2mdn.net|utmccn=(referral)|utmcmd=referral|utmcct=/1797755/Coffee_v1_300x250.swf; path_cookie=_news; BT=; oo_int_hit=1; oo_int_percent=0; rsi_segs=; s_vi=[CS]v1|267401DC851D2580-4000012F803267BB[CE]; OAX=rnneEkzoA7IACz4K; __utma=30057196.685584106.1290273703.1290273703.1290273703.1; __utmc=30057196; RMFD=011PJr8MO1021wJe; __utmb=30057196.3.9.1290273791381; opt=no-opt;

Response

HTTP/1.1 200 OK
Server: Sun-Java-System-Web-Server/7.0
ETag: W/"85d69873a2fb6b936d339def35bb29c7"
X-runtime: 445
Content-Type: text/html; charset=utf-8
Proxy-agent: Sun-Java-System-Web-Server/7.0
Cache-Control: private, max-age=30
Date: Sat, 20 Nov 2010 18:21:21 GMT
Connection: close
Connection: Transfer-Encoding
Content-Length: 42523

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN"
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xmlns:og="http://opengraphprotocol.org/sc
...[SNIP]...
</script>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/main-min.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/ab-min.js" type="text/javascript"></script>
...[SNIP]...
<body class="news technology">
<script src="http://www.googletagservices.com/tag/static/google_services.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script type="text/javascript" src="http://pagead2.googlesyndication.com/pagead/show_ads.js">
</script>
...[SNIP]...
</noscript>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/s_code_p.js" type="text/javascript"></script> <link href="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_style.css" media="screen" rel="stylesheet" type="text/css" /> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_engine_c.js" type="text/javascript"></script> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_conf_en-US_inline.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script type="text/javascript" src="http://js.revsci.net/gateway/gw.js?csid=K05539"></script>
...[SNIP]...

4.114. http://www.bloomberg.com/news/uk-ireland/  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.bloomberg.com
Path:   /news/uk-ireland/

Issue detail

The response dynamically includes the following scripts from other domains:

Request

GET /news/uk-ireland/ HTTP/1.1
Host: www.bloomberg.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmv=30057196.|3=opt=no-opt=1,; s_sess=%20s_ria%3Dflash%257CSilverlight%25204.0%3B%20s_campaign%3Dcof_2%3B%20s_cc%3Dtrue%3B%20ev1%3Dtv%253Ahome%3B%20s_sq%3D%3B; __utmz=30057196.1290273703.1.1.utmcsr=s0.2mdn.net|utmccn=(referral)|utmcmd=referral|utmcct=/1797755/Coffee_v1_300x250.swf; path_cookie=_news; BT=; oo_int_hit=1; oo_int_percent=0; rsi_segs=; s_vi=[CS]v1|267401DC851D2580-4000012F803267BB[CE]; OAX=rnneEkzoA7IACz4K; __utma=30057196.685584106.1290273703.1290273703.1290273703.1; __utmc=30057196; RMFD=011PJr8MO1021wJe; __utmb=30057196.3.9.1290273791381; opt=no-opt;

Response

HTTP/1.1 200 OK
Server: Sun-Java-System-Web-Server/7.0
ETag: W/"3af3bffc661089ee74f6ed9231e36cdf"
X-runtime: 13
Content-Type: text/html; charset=utf-8
Proxy-agent: Sun-Java-System-Web-Server/7.0
Cache-Control: private, max-age=20
Date: Sat, 20 Nov 2010 18:21:39 GMT
Connection: close
Connection: Transfer-Encoding
Content-Length: 36116

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN"
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xmlns:og="http://opengraphprotocol.org/sc
...[SNIP]...
</script>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/main-min.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/ab-min.js" type="text/javascript"></script>
...[SNIP]...
<body class="news uk-ireland">
<script src="http://www.googletagservices.com/tag/static/google_services.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script type="text/javascript" src="http://pagead2.googlesyndication.com/pagead/show_ads.js">
</script>
...[SNIP]...
</noscript>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/s_code_p.js" type="text/javascript"></script> <link href="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_style.css" media="screen" rel="stylesheet" type="text/css" /> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_engine_c.js" type="text/javascript"></script> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_conf_en-US_inline.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script type="text/javascript" src="http://js.revsci.net/gateway/gw.js?csid=K05539"></script>
...[SNIP]...

4.115. http://www.bloomberg.com/news/worldwide/  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.bloomberg.com
Path:   /news/worldwide/

Issue detail

The response dynamically includes the following scripts from other domains:

Request

GET /news/worldwide/ HTTP/1.1
Host: www.bloomberg.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmv=30057196.|3=opt=no-opt=1,; s_sess=%20s_ria%3Dflash%257CSilverlight%25204.0%3B%20s_campaign%3Dcof_2%3B%20s_cc%3Dtrue%3B%20ev1%3Dtv%253Ahome%3B%20s_sq%3D%3B; __utmz=30057196.1290273703.1.1.utmcsr=s0.2mdn.net|utmccn=(referral)|utmcmd=referral|utmcct=/1797755/Coffee_v1_300x250.swf; path_cookie=_news; BT=; oo_int_hit=1; oo_int_percent=0; rsi_segs=; s_vi=[CS]v1|267401DC851D2580-4000012F803267BB[CE]; OAX=rnneEkzoA7IACz4K; __utma=30057196.685584106.1290273703.1290273703.1290273703.1; __utmc=30057196; RMFD=011PJr8MO1021wJe; __utmb=30057196.3.9.1290273791381; opt=no-opt;

Response

HTTP/1.1 200 OK
Server: Sun-Java-System-Web-Server/7.0
ETag: W/"1cf89fbde26ab6f086419d8fd14d964f"
X-runtime: 358
Content-Type: text/html; charset=utf-8
Proxy-agent: Sun-Java-System-Web-Server/7.0
Cache-Control: private, max-age=60
Date: Sat, 20 Nov 2010 18:20:32 GMT
Connection: close
Connection: Transfer-Encoding
Content-Length: 36679

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN"
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xmlns:og="http://opengraphprotocol.org/sc
...[SNIP]...
</script>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/main-min.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/ab-min.js" type="text/javascript"></script>
...[SNIP]...
<body class="news worldwide">
<script src="http://www.googletagservices.com/tag/static/google_services.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script type="text/javascript" src="http://pagead2.googlesyndication.com/pagead/show_ads.js">
</script>
...[SNIP]...
</noscript>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/s_code_p.js" type="text/javascript"></script> <link href="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_style.css" media="screen" rel="stylesheet" type="text/css" /> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_engine_c.js" type="text/javascript"></script> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_conf_en-US_inline.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script type="text/javascript" src="http://js.revsci.net/gateway/gw.js?csid=K05539"></script>
...[SNIP]...

4.116. http://www.bloomberg.com/notices/privacy.html  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.bloomberg.com
Path:   /notices/privacy.html

Issue detail

The response dynamically includes the following script from another domain:

Request

GET /notices/privacy.html HTTP/1.1
Host: www.bloomberg.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmv=30057196.|3=opt=no-opt=1,; s_sess=%20s_ria%3Dflash%257CSilverlight%25204.0%3B%20s_campaign%3Dcof_2%3B%20s_cc%3Dtrue%3B%20ev1%3Dtv%253Ahome%3B%20s_sq%3D%3B; __utmz=30057196.1290273703.1.1.utmcsr=s0.2mdn.net|utmccn=(referral)|utmcmd=referral|utmcct=/1797755/Coffee_v1_300x250.swf; path_cookie=_news; BT=; oo_int_hit=1; oo_int_percent=0; rsi_segs=; s_vi=[CS]v1|267401DC851D2580-4000012F803267BB[CE]; OAX=rnneEkzoA7IACz4K; __utma=30057196.685584106.1290273703.1290273703.1290273703.1; __utmc=30057196; RMFD=011PJr8MO1021wJe; __utmb=30057196.3.9.1290273791381; opt=no-opt;

Response

HTTP/1.1 200 OK
Server: Sun-Java-System-Web-Server/7.0
Content-Type: text/html
Last-Modified: Fri, 19 Nov 2010 11:00:05 GMT
ETag: W/"1648-4ce658b5"
Cache-Control: max-age=60
Expires: Sat, 20 Nov 2010 18:23:23 GMT
Date: Sat, 20 Nov 2010 18:22:23 GMT
Content-Length: 17623
Connection: close

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml"><head xmlns:webvar="http://www.bloomberg.com/we
...[SNIP]...
</script>
<script type="text/javascript" src="http://www.googletagservices.com/tag/static/google_services_async.js">//</script>
...[SNIP]...

4.117. http://www.bloomberg.com/notices/tos.html  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.bloomberg.com
Path:   /notices/tos.html

Issue detail

The response dynamically includes the following script from another domain:

Request

GET /notices/tos.html HTTP/1.1
Host: www.bloomberg.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmv=30057196.|3=opt=no-opt=1,; s_sess=%20s_ria%3Dflash%257CSilverlight%25204.0%3B%20s_campaign%3Dcof_2%3B%20s_cc%3Dtrue%3B%20ev1%3Dtv%253Ahome%3B%20s_sq%3D%3B; __utmz=30057196.1290273703.1.1.utmcsr=s0.2mdn.net|utmccn=(referral)|utmcmd=referral|utmcct=/1797755/Coffee_v1_300x250.swf; path_cookie=_news; BT=; oo_int_hit=1; oo_int_percent=0; rsi_segs=; s_vi=[CS]v1|267401DC851D2580-4000012F803267BB[CE]; OAX=rnneEkzoA7IACz4K; __utma=30057196.685584106.1290273703.1290273703.1290273703.1; __utmc=30057196; RMFD=011PJr8MO1021wJe; __utmb=30057196.3.9.1290273791381; opt=no-opt;

Response

HTTP/1.1 200 OK
Server: Sun-Java-System-Web-Server/7.0
Content-Type: text/html
Last-Modified: Fri, 19 Nov 2010 11:00:02 GMT
ETag: W/"4007-4ce658b2"
Cache-Control: max-age=60
Expires: Sat, 20 Nov 2010 18:23:21 GMT
Date: Sat, 20 Nov 2010 18:22:21 GMT
Connection: close
Connection: Transfer-Encoding
Content-Length: 47693

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml"><head xmlns:webvar="http://www.bloomberg.com/we
...[SNIP]...
</script>
<script type="text/javascript" src="http://www.googletagservices.com/tag/static/google_services_async.js">//</script>
...[SNIP]...

4.118. http://www.bloomberg.com/notices/trademarks.html  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.bloomberg.com
Path:   /notices/trademarks.html

Issue detail

The response dynamically includes the following script from another domain:

Request

GET /notices/trademarks.html HTTP/1.1
Host: www.bloomberg.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmv=30057196.|3=opt=no-opt=1,; s_sess=%20s_ria%3Dflash%257CSilverlight%25204.0%3B%20s_campaign%3Dcof_2%3B%20s_cc%3Dtrue%3B%20ev1%3Dtv%253Ahome%3B%20s_sq%3D%3B; __utmz=30057196.1290273703.1.1.utmcsr=s0.2mdn.net|utmccn=(referral)|utmcmd=referral|utmcct=/1797755/Coffee_v1_300x250.swf; path_cookie=_news; BT=; oo_int_hit=1; oo_int_percent=0; rsi_segs=; s_vi=[CS]v1|267401DC851D2580-4000012F803267BB[CE]; OAX=rnneEkzoA7IACz4K; __utma=30057196.685584106.1290273703.1290273703.1290273703.1; __utmc=30057196; RMFD=011PJr8MO1021wJe; __utmb=30057196.3.9.1290273791381; opt=no-opt;

Response

HTTP/1.1 200 OK
Server: Sun-Java-System-Web-Server/7.0
Content-Type: text/html
Last-Modified: Fri, 19 Nov 2010 11:00:09 GMT
ETag: W/"a51-4ce658b9"
Cache-Control: max-age=58
Expires: Sat, 20 Nov 2010 18:23:19 GMT
Date: Sat, 20 Nov 2010 18:22:21 GMT
Content-Length: 8313
Connection: close

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml"><head xmlns:webvar="http://www.bloomberg.com/we
...[SNIP]...
</script>
<script type="text/javascript" src="http://www.googletagservices.com/tag/static/google_services_async.js">//</script>
...[SNIP]...

4.119. http://www.bloomberg.com/opinion/  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.bloomberg.com
Path:   /opinion/

Issue detail

The response dynamically includes the following scripts from other domains:

Request

GET /opinion/ HTTP/1.1
Host: www.bloomberg.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmv=30057196.|3=opt=no-opt=1,; s_sess=%20s_ria%3Dflash%257CSilverlight%25204.0%3B%20s_campaign%3Dcof_2%3B%20s_cc%3Dtrue%3B%20ev1%3Dtv%253Ahome%3B%20s_sq%3D%3B; __utmz=30057196.1290273703.1.1.utmcsr=s0.2mdn.net|utmccn=(referral)|utmcmd=referral|utmcct=/1797755/Coffee_v1_300x250.swf; path_cookie=_news; BT=; oo_int_hit=1; oo_int_percent=0; rsi_segs=; s_vi=[CS]v1|267401DC851D2580-4000012F803267BB[CE]; OAX=rnneEkzoA7IACz4K; __utma=30057196.685584106.1290273703.1290273703.1290273703.1; __utmc=30057196; RMFD=011PJr8MO1021wJe; __utmb=30057196.3.9.1290273791381; opt=no-opt;

Response

HTTP/1.1 200 OK
Server: Sun-Java-System-Web-Server/7.0
ETag: W/"c0895929c44fa0de40097289f997852c"
X-runtime: 469
Content-Type: text/html; charset=utf-8
Proxy-agent: Sun-Java-System-Web-Server/7.0
Cache-Control: private, max-age=19
Date: Sat, 20 Nov 2010 18:21:43 GMT
Connection: close
Connection: Transfer-Encoding
Content-Length: 38942

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN"
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xmlns:og="http://opengraphprotocol.org/sc
...[SNIP]...
</script>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/main-min.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/ab-min.js" type="text/javascript"></script>
...[SNIP]...
<body class="news opinion">
<script src="http://www.googletagservices.com/tag/static/google_services.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script type="text/javascript" src="http://pagead2.googlesyndication.com/pagead/show_ads.js">
</script>
...[SNIP]...
</noscript>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/s_code_p.js" type="text/javascript"></script> <link href="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_style.css" media="screen" rel="stylesheet" type="text/css" /> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_engine_c.js" type="text/javascript"></script> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_conf_en-US_inline.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script type="text/javascript" src="http://js.revsci.net/gateway/gw.js?csid=K05539"></script>
...[SNIP]...

4.120. http://www.bloomberg.com/personal-finance/  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.bloomberg.com
Path:   /personal-finance/

Issue detail

The response dynamically includes the following scripts from other domains:

Request

GET /personal-finance/ HTTP/1.1
Host: www.bloomberg.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmv=30057196.|3=opt=no-opt=1,; s_sess=%20s_ria%3Dflash%257CSilverlight%25204.0%3B%20s_campaign%3Dcof_2%3B%20s_cc%3Dtrue%3B%20ev1%3Dtv%253Ahome%3B%20s_sq%3D%3B; __utmz=30057196.1290273703.1.1.utmcsr=s0.2mdn.net|utmccn=(referral)|utmcmd=referral|utmcct=/1797755/Coffee_v1_300x250.swf; path_cookie=_news; BT=; oo_int_hit=1; oo_int_percent=0; rsi_segs=; s_vi=[CS]v1|267401DC851D2580-4000012F803267BB[CE]; OAX=rnneEkzoA7IACz4K; __utma=30057196.685584106.1290273703.1290273703.1290273703.1; __utmc=30057196; RMFD=011PJr8MO1021wJe; __utmb=30057196.3.9.1290273791381; opt=no-opt;

Response

HTTP/1.1 200 OK
Server: Sun-Java-System-Web-Server/7.0
ETag: W/"294f6134391a240390a574ca02b3a1c7"
X-runtime: 414
Content-Type: text/html; charset=utf-8
Proxy-agent: Sun-Java-System-Web-Server/7.0
Cache-Control: private, max-age=31
Date: Sat, 20 Nov 2010 18:22:02 GMT
Connection: close
Connection: Transfer-Encoding
Content-Length: 34792

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN"
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xmlns:og="http://opengraphprotocol.org/sc
...[SNIP]...
</script>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/main-min.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/ab-min.js" type="text/javascript"></script>
...[SNIP]...
</script> <script src="http://www.googletagservices.com/tag/static/google_services.js" type="text/javascript"></script>
...[SNIP]...
</div>

<script type="text/javascript" src="http://jlinks.industrybrains.com/jsct?sid=942&amp;ct=BLOOMBERG_PERSONAL_FINANCE&amp;tr=BLOOMBERG_PERSONAL_FINANCE&amp;num=5&amp;layt=1&amp;fmt=simp"></script>
...[SNIP]...
</script>
<script type="text/javascript" src="http://pagead2.googlesyndication.com/pagead/show_ads.js">
</script>
...[SNIP]...
</noscript>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/s_code_p.js" type="text/javascript"></script> <link href="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_style.css" media="screen" rel="stylesheet" type="text/css" /> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_engine_c.js" type="text/javascript"></script> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_conf_en-US_inline.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script type="text/javascript" src="http://js.revsci.net/gateway/gw.js?csid=K05539"></script>
...[SNIP]...

4.121. http://www.bloomberg.com/personal-finance/calculators/  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.bloomberg.com
Path:   /personal-finance/calculators/

Issue detail

The response dynamically includes the following scripts from other domains:

Request

GET /personal-finance/calculators/ HTTP/1.1
Host: www.bloomberg.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmv=30057196.|3=opt=no-opt=1,; s_sess=%20s_ria%3Dflash%257CSilverlight%25204.0%3B%20s_campaign%3Dcof_2%3B%20s_cc%3Dtrue%3B%20ev1%3Dtv%253Ahome%3B%20s_sq%3D%3B; __utmz=30057196.1290273703.1.1.utmcsr=s0.2mdn.net|utmccn=(referral)|utmcmd=referral|utmcct=/1797755/Coffee_v1_300x250.swf; path_cookie=_news; BT=; oo_int_hit=1; oo_int_percent=0; rsi_segs=; s_vi=[CS]v1|267401DC851D2580-4000012F803267BB[CE]; OAX=rnneEkzoA7IACz4K; __utma=30057196.685584106.1290273703.1290273703.1290273703.1; __utmc=30057196; RMFD=011PJr8MO1021wJe; __utmb=30057196.3.9.1290273791381; opt=no-opt;

Response

HTTP/1.1 200 OK
Server: Sun-Java-System-Web-Server/7.0
ETag: W/"b7a0b39bb04a4a810a2072c1f5597eb2"
X-runtime: 131
Content-Type: text/html; charset=utf-8
Proxy-agent: Sun-Java-System-Web-Server/7.0
Cache-Control: private, max-age=13
Date: Sat, 20 Nov 2010 18:22:02 GMT
Content-Length: 25831
Connection: close

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN"
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xmlns:og="http://opengraphprotocol.org/sc
...[SNIP]...
</script>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/main-min.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/ab-min.js" type="text/javascript"></script>
...[SNIP]...
<body class="personal-finance">
<script src="http://www.googletagservices.com/tag/static/google_services.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script type="text/javascript" src="http://pagead2.googlesyndication.com/pagead/show_ads.js">
</script>
...[SNIP]...
</noscript>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/s_code_p.js" type="text/javascript"></script> <link href="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_style.css" media="screen" rel="stylesheet" type="text/css" /> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_engine_c.js" type="text/javascript"></script> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_conf_en-US_inline.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script type="text/javascript" src="http://js.revsci.net/gateway/gw.js?csid=K05539"></script>
...[SNIP]...

4.122. http://www.bloomberg.com/personalities/  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.bloomberg.com
Path:   /personalities/

Issue detail

The response dynamically includes the following scripts from other domains:

Request

GET /personalities/ HTTP/1.1
Host: www.bloomberg.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmv=30057196.|3=opt=no-opt=1,; s_sess=%20s_ria%3Dflash%257CSilverlight%25204.0%3B%20s_campaign%3Dcof_2%3B%20s_cc%3Dtrue%3B%20ev1%3Dtv%253Ahome%3B%20s_sq%3D%3B; __utmz=30057196.1290273703.1.1.utmcsr=s0.2mdn.net|utmccn=(referral)|utmcmd=referral|utmcct=/1797755/Coffee_v1_300x250.swf; path_cookie=_news; BT=; oo_int_hit=1; oo_int_percent=0; rsi_segs=; s_vi=[CS]v1|267401DC851D2580-4000012F803267BB[CE]; OAX=rnneEkzoA7IACz4K; __utma=30057196.685584106.1290273703.1290273703.1290273703.1; __utmc=30057196; RMFD=011PJr8MO1021wJe; __utmb=30057196.3.9.1290273791381; opt=no-opt;

Response

HTTP/1.1 200 OK
Server: Sun-Java-System-Web-Server/7.0
Cache-Control: max-age=900
ETag: W/"a00dbcec512b9a43b114757df4e88c85"
X-runtime: 859
Content-Type: text/html; charset=utf-8
Cache-Control: max-age=120, private
Proxy-agent: Sun-Java-System-Web-Server/7.0
Date: Sat, 20 Nov 2010 18:22:17 GMT
Connection: close
Connection: Transfer-Encoding
Set-Cookie: ad_description=%2Ftvradio%2Ftv%2Fanchors; path=/
Content-Length: 67637

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN"
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xmlns:og="http://opengraphprotocol.org/sc
...[SNIP]...
</script>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/main-min.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/ab-min.js" type="text/javascript"></script>
...[SNIP]...
<body class="personalities">
<script src="http://www.googletagservices.com/tag/static/google_services.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script type="text/javascript" src="http://pagead2.googlesyndication.com/pagead/show_ads.js">
</script>
...[SNIP]...
</noscript>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/s_code_p.js" type="text/javascript"></script> <link href="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_style.css" media="screen" rel="stylesheet" type="text/css" /> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_engine_c.js" type="text/javascript"></script> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_conf_en-US_inline.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script type="text/javascript" src="http://js.revsci.net/gateway/gw.js?csid=K05539"></script>
...[SNIP]...

4.123. http://www.bloomberg.com/personalities/betty_liu/  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.bloomberg.com
Path:   /personalities/betty_liu/

Issue detail

The response dynamically includes the following scripts from other domains:

Request

GET /personalities/betty_liu/ HTTP/1.1
Host: www.bloomberg.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmv=30057196.|3=opt=no-opt=1,; s_sess=%20s_ria%3Dflash%257CSilverlight%25204.0%3B%20s_campaign%3Dcof_2%3B%20s_cc%3Dtrue%3B%20ev1%3Dtv%253Ahome%3B%20s_sq%3D%3B; __utmz=30057196.1290273703.1.1.utmcsr=s0.2mdn.net|utmccn=(referral)|utmcmd=referral|utmcct=/1797755/Coffee_v1_300x250.swf; path_cookie=_news; BT=; oo_int_hit=1; oo_int_percent=0; rsi_segs=; s_vi=[CS]v1|267401DC851D2580-4000012F803267BB[CE]; OAX=rnneEkzoA7IACz4K; __utma=30057196.685584106.1290273703.1290273703.1290273703.1; __utmc=30057196; RMFD=011PJr8MO1021wJe; __utmb=30057196.3.9.1290273791381; opt=no-opt;

Response

HTTP/1.1 200 OK
Server: Sun-Java-System-Web-Server/7.0
Cache-Control: max-age=900
ETag: W/"c5cfb3d2e6b4c839a371dad3c51277dd"
X-runtime: 135
Content-Type: text/html; charset=utf-8
Cache-Control: max-age=120, private
Proxy-agent: Sun-Java-System-Web-Server/7.0
Date: Sat, 20 Nov 2010 18:22:20 GMT
Content-Length: 25079
Connection: close
Set-Cookie: ad_description=; path=/

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN"
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xmlns:og="http://opengraphprotocol.org/sc
...[SNIP]...
</script>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/main-min.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/ab-min.js" type="text/javascript"></script>
...[SNIP]...
<body class="personality_bio">
<script src="http://www.googletagservices.com/tag/static/google_services.js" type="text/javascript"></script>
...[SNIP]...
</noscript>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/s_code_p.js" type="text/javascript"></script> <link href="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_style.css" media="screen" rel="stylesheet" type="text/css" /> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_engine_c.js" type="text/javascript"></script> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_conf_en-US_inline.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script type="text/javascript" src="http://js.revsci.net/gateway/gw.js?csid=K05539"></script>
...[SNIP]...

4.124. http://www.bloomberg.com/personalities/deirdre_bolton/  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.bloomberg.com
Path:   /personalities/deirdre_bolton/

Issue detail

The response dynamically includes the following scripts from other domains:

Request

GET /personalities/deirdre_bolton/ HTTP/1.1
Host: www.bloomberg.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmv=30057196.|3=opt=no-opt=1,; s_sess=%20s_ria%3Dflash%257CSilverlight%25204.0%3B%20s_campaign%3Dcof_2%3B%20s_cc%3Dtrue%3B%20ev1%3Dtv%253Ahome%3B%20s_sq%3D%3B; __utmz=30057196.1290273703.1.1.utmcsr=s0.2mdn.net|utmccn=(referral)|utmcmd=referral|utmcct=/1797755/Coffee_v1_300x250.swf; path_cookie=_news; BT=; oo_int_hit=1; oo_int_percent=0; rsi_segs=; s_vi=[CS]v1|267401DC851D2580-4000012F803267BB[CE]; OAX=rnneEkzoA7IACz4K; __utma=30057196.685584106.1290273703.1290273703.1290273703.1; __utmc=30057196; RMFD=011PJr8MO1021wJe; __utmb=30057196.3.9.1290273791381; opt=no-opt;

Response

HTTP/1.1 200 OK
Server: Sun-Java-System-Web-Server/7.0
Cache-Control: max-age=900
ETag: W/"d5ebd3830727ecf8ab55a477562e46d6"
X-runtime: 122
Content-Type: text/html; charset=utf-8
Cache-Control: max-age=120, private
Proxy-agent: Sun-Java-System-Web-Server/7.0
Date: Sat, 20 Nov 2010 18:22:17 GMT
Content-Length: 24572
Connection: close
Set-Cookie: ad_description=; path=/

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN"
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xmlns:og="http://opengraphprotocol.org/sc
...[SNIP]...
</script>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/main-min.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/ab-min.js" type="text/javascript"></script>
...[SNIP]...
<body class="personality_bio">
<script src="http://www.googletagservices.com/tag/static/google_services.js" type="text/javascript"></script>
...[SNIP]...
</noscript>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/s_code_p.js" type="text/javascript"></script> <link href="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_style.css" media="screen" rel="stylesheet" type="text/css" /> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_engine_c.js" type="text/javascript"></script> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_conf_en-US_inline.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script type="text/javascript" src="http://js.revsci.net/gateway/gw.js?csid=K05539"></script>
...[SNIP]...

4.125. http://www.bloomberg.com/personalities/erik_schatzker/  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.bloomberg.com
Path:   /personalities/erik_schatzker/

Issue detail

The response dynamically includes the following scripts from other domains:

Request

GET /personalities/erik_schatzker/ HTTP/1.1
Host: www.bloomberg.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmv=30057196.|3=opt=no-opt=1,; s_sess=%20s_ria%3Dflash%257CSilverlight%25204.0%3B%20s_campaign%3Dcof_2%3B%20s_cc%3Dtrue%3B%20ev1%3Dtv%253Ahome%3B%20s_sq%3D%3B; __utmz=30057196.1290273703.1.1.utmcsr=s0.2mdn.net|utmccn=(referral)|utmcmd=referral|utmcct=/1797755/Coffee_v1_300x250.swf; path_cookie=_news; BT=; oo_int_hit=1; oo_int_percent=0; rsi_segs=; s_vi=[CS]v1|267401DC851D2580-4000012F803267BB[CE]; OAX=rnneEkzoA7IACz4K; __utma=30057196.685584106.1290273703.1290273703.1290273703.1; __utmc=30057196; RMFD=011PJr8MO1021wJe; __utmb=30057196.3.9.1290273791381; opt=no-opt;

Response

HTTP/1.1 200 OK
Server: Sun-Java-System-Web-Server/7.0
Cache-Control: max-age=900
ETag: W/"ee942b97a45fa1a2a2307cda4b8e8f5a"
X-runtime: 129
Content-Type: text/html; charset=utf-8
Cache-Control: max-age=120, private
Proxy-agent: Sun-Java-System-Web-Server/7.0
Date: Sat, 20 Nov 2010 18:22:18 GMT
Content-Length: 25261
Connection: close
Set-Cookie: ad_description=; path=/

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN"
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xmlns:og="http://opengraphprotocol.org/sc
...[SNIP]...
</script>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/main-min.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/ab-min.js" type="text/javascript"></script>
...[SNIP]...
<body class="personality_bio">
<script src="http://www.googletagservices.com/tag/static/google_services.js" type="text/javascript"></script>
...[SNIP]...
</noscript>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/s_code_p.js" type="text/javascript"></script> <link href="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_style.css" media="screen" rel="stylesheet" type="text/css" /> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_engine_c.js" type="text/javascript"></script> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_conf_en-US_inline.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script type="text/javascript" src="http://js.revsci.net/gateway/gw.js?csid=K05539"></script>
...[SNIP]...

4.126. http://www.bloomberg.com/personalities/margaret_brennan/  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.bloomberg.com
Path:   /personalities/margaret_brennan/

Issue detail

The response dynamically includes the following scripts from other domains:

Request

GET /personalities/margaret_brennan/ HTTP/1.1
Host: www.bloomberg.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmv=30057196.|3=opt=no-opt=1,; s_sess=%20s_ria%3Dflash%257CSilverlight%25204.0%3B%20s_campaign%3Dcof_2%3B%20s_cc%3Dtrue%3B%20ev1%3Dtv%253Ahome%3B%20s_sq%3D%3B; __utmz=30057196.1290273703.1.1.utmcsr=s0.2mdn.net|utmccn=(referral)|utmcmd=referral|utmcct=/1797755/Coffee_v1_300x250.swf; path_cookie=_news; BT=; oo_int_hit=1; oo_int_percent=0; rsi_segs=; s_vi=[CS]v1|267401DC851D2580-4000012F803267BB[CE]; OAX=rnneEkzoA7IACz4K; __utma=30057196.685584106.1290273703.1290273703.1290273703.1; __utmc=30057196; RMFD=011PJr8MO1021wJe; __utmb=30057196.3.9.1290273791381; opt=no-opt;

Response

HTTP/1.1 200 OK
Server: Sun-Java-System-Web-Server/7.0
Cache-Control: max-age=900
ETag: W/"6e6cad802336792d22b137b7ed8bbebf"
X-runtime: 132
Content-Type: text/html; charset=utf-8
Cache-Control: max-age=120, private
Proxy-agent: Sun-Java-System-Web-Server/7.0
Date: Sat, 20 Nov 2010 18:22:19 GMT
Content-Length: 25102
Connection: close
Set-Cookie: ad_description=; path=/

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN"
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xmlns:og="http://opengraphprotocol.org/sc
...[SNIP]...
</script>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/main-min.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/ab-min.js" type="text/javascript"></script>
...[SNIP]...
<body class="personality_bio">
<script src="http://www.googletagservices.com/tag/static/google_services.js" type="text/javascript"></script>
...[SNIP]...
</noscript>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/s_code_p.js" type="text/javascript"></script> <link href="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_style.css" media="screen" rel="stylesheet" type="text/css" /> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_engine_c.js" type="text/javascript"></script> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_conf_en-US_inline.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script type="text/javascript" src="http://js.revsci.net/gateway/gw.js?csid=K05539"></script>
...[SNIP]...

4.127. http://www.bloomberg.com/podcasts/  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.bloomberg.com
Path:   /podcasts/

Issue detail

The response dynamically includes the following scripts from other domains:

Request

GET /podcasts/ HTTP/1.1
Host: www.bloomberg.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmv=30057196.|3=opt=no-opt=1,; s_sess=%20s_ria%3Dflash%257CSilverlight%25204.0%3B%20s_campaign%3Dcof_2%3B%20s_cc%3Dtrue%3B%20ev1%3Dtv%253Ahome%3B%20s_sq%3D%3B; __utmz=30057196.1290273703.1.1.utmcsr=s0.2mdn.net|utmccn=(referral)|utmcmd=referral|utmcct=/1797755/Coffee_v1_300x250.swf; path_cookie=_news; BT=; oo_int_hit=1; oo_int_percent=0; rsi_segs=; s_vi=[CS]v1|267401DC851D2580-4000012F803267BB[CE]; OAX=rnneEkzoA7IACz4K; __utma=30057196.685584106.1290273703.1290273703.1290273703.1; __utmc=30057196; RMFD=011PJr8MO1021wJe; __utmb=30057196.3.9.1290273791381; opt=no-opt;

Response

HTTP/1.1 200 OK
Server: Sun-Java-System-Web-Server/7.0
Cache-Control: max-age=900
ETag: W/"59b9bff932866eca232254ea2df9cbb0"
X-runtime: 2806
Content-Type: text/html; charset=utf-8
Cache-Control: max-age=120, private
Proxy-agent: Sun-Java-System-Web-Server/7.0
Date: Sat, 20 Nov 2010 18:22:14 GMT
Connection: close
Connection: Transfer-Encoding
Set-Cookie: ad_description=%2Ftvradio%2Fpodcast; path=/
Content-Length: 34286

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN"
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xmlns:og="http://opengraphprotocol.org/sc
...[SNIP]...
</script>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/main-min.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/ab-min.js" type="text/javascript"></script>
...[SNIP]...
<body class="podcast">
<script src="http://www.googletagservices.com/tag/static/google_services.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script type="text/javascript" src="http://pagead2.googlesyndication.com/pagead/show_ads.js">
</script>
...[SNIP]...
</noscript>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/s_code_p.js" type="text/javascript"></script> <link href="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_style.css" media="screen" rel="stylesheet" type="text/css" /> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_engine_c.js" type="text/javascript"></script> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_conf_en-US_inline.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script type="text/javascript" src="http://js.revsci.net/gateway/gw.js?csid=K05539"></script>
...[SNIP]...

4.128. http://www.bloomberg.com/popular/  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.bloomberg.com
Path:   /popular/

Issue detail

The response dynamically includes the following scripts from other domains:

Request

GET /popular/ HTTP/1.1
Host: www.bloomberg.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmv=30057196.|3=opt=no-opt=1,; s_sess=%20s_ria%3Dflash%257CSilverlight%25204.0%3B%20s_campaign%3Dcof_2%3B%20s_cc%3Dtrue%3B%20ev1%3Dtv%253Ahome%3B%20s_sq%3D%3B; __utmz=30057196.1290273703.1.1.utmcsr=s0.2mdn.net|utmccn=(referral)|utmcmd=referral|utmcct=/1797755/Coffee_v1_300x250.swf; path_cookie=_news; BT=; oo_int_hit=1; oo_int_percent=0; rsi_segs=; s_vi=[CS]v1|267401DC851D2580-4000012F803267BB[CE]; OAX=rnneEkzoA7IACz4K; __utma=30057196.685584106.1290273703.1290273703.1290273703.1; __utmc=30057196; RMFD=011PJr8MO1021wJe; __utmb=30057196.3.9.1290273791381; opt=no-opt;

Response

HTTP/1.1 200 OK
Server: Sun-Java-System-Web-Server/7.0
Cache-Control: max-age=900
ETag: W/"577f6fe493694613a2bb22f9989631aa"
X-runtime: 367
Content-Type: text/html; charset=utf-8
Cache-Control: max-age=120, private
Proxy-agent: Sun-Java-System-Web-Server/7.0
Date: Sat, 20 Nov 2010 18:21:41 GMT
Connection: close
Connection: Transfer-Encoding
Set-Cookie:
Content-Length: 32968

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN"
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xmlns:og="http://opengraphprotocol.org/sc
...[SNIP]...
</script>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/main-min.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/ab-min.js" type="text/javascript"></script>
...[SNIP]...
<body class="news popular">
<script src="http://www.googletagservices.com/tag/static/google_services.js" type="text/javascript"></script>
...[SNIP]...
</noscript>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/s_code_p.js" type="text/javascript"></script> <link href="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_style.css" media="screen" rel="stylesheet" type="text/css" /> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_engine_c.js" type="text/javascript"></script> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_conf_en-US_inline.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script type="text/javascript" src="http://js.revsci.net/gateway/gw.js?csid=K05539"></script>
...[SNIP]...

4.129. http://www.bloomberg.com/professional/  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.bloomberg.com
Path:   /professional/

Issue detail

The response dynamically includes the following scripts from other domains:

Request

GET /professional/ HTTP/1.1
Host: www.bloomberg.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmv=30057196.|3=opt=no-opt=1,; s_sess=%20s_ria%3Dflash%257CSilverlight%25204.0%3B%20s_campaign%3Dcof_2%3B%20s_cc%3Dtrue%3B%20ev1%3Dtv%253Ahome%3B%20s_sq%3D%3B; __utmz=30057196.1290273703.1.1.utmcsr=s0.2mdn.net|utmccn=(referral)|utmcmd=referral|utmcct=/1797755/Coffee_v1_300x250.swf; path_cookie=_news; BT=; oo_int_hit=1; oo_int_percent=0; rsi_segs=; s_vi=[CS]v1|267401DC851D2580-4000012F803267BB[CE]; OAX=rnneEkzoA7IACz4K; __utma=30057196.685584106.1290273703.1290273703.1290273703.1; __utmc=30057196; RMFD=011PJr8MO1021wJe; __utmb=30057196.3.9.1290273791381; opt=no-opt;

Response

HTTP/1.1 200 OK
Server: Sun-Java-System-Web-Server/7.0
Cache-Control: max-age=900
ETag: W/"14fb11c461656b0af28f94ba65f9f101"
X-runtime: 138
Content-Type: text/html; charset=utf-8
Cache-Control: max-age=120, private
Proxy-agent: Sun-Java-System-Web-Server/7.0
Date: Sat, 20 Nov 2010 18:22:12 GMT
Content-Length: 29367
Connection: close
Set-Cookie: ad_description=%2Fprofessional%2Findex; path=/

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN"
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xmlns:og="http://opengraphprotocol.org/sc
...[SNIP]...
</script>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/main-min.js" type="text/javascript"></script>
...[SNIP]...
<link href="http://cdn.gotraffic.net/v/20101118_153606/stylesheets/prof_swf.css" media="screen" rel="stylesheet" type="text/css" />


<script src="http://ajax.googleapis.com/ajax/libs/swfobject/2.2/swfobject.js" type="text/javascript"></script>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/prof_swf.js" type="text/javascript"></script>
...[SNIP]...
<body class="professional">
<script src="http://www.googletagservices.com/tag/static/google_services.js" type="text/javascript"></script>
...[SNIP]...
</noscript>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/s_code_p.js" type="text/javascript"></script> <link href="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_style.css" media="screen" rel="stylesheet" type="text/css" /> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_engine_c.js" type="text/javascript"></script> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_conf_en-US_inline.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script type="text/javascript" src="http://js.revsci.net/gateway/gw.js?csid=K05539"></script>
...[SNIP]...

4.130. http://www.bloomberg.com/radio/  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.bloomberg.com
Path:   /radio/

Issue detail

The response dynamically includes the following scripts from other domains:

Request

GET /radio/ HTTP/1.1
Host: www.bloomberg.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmv=30057196.|3=opt=no-opt=1,; s_sess=%20s_ria%3Dflash%257CSilverlight%25204.0%3B%20s_campaign%3Dcof_2%3B%20s_cc%3Dtrue%3B%20ev1%3Dtv%253Ahome%3B%20s_sq%3D%3B; __utmz=30057196.1290273703.1.1.utmcsr=s0.2mdn.net|utmccn=(referral)|utmcmd=referral|utmcct=/1797755/Coffee_v1_300x250.swf; path_cookie=_news; BT=; oo_int_hit=1; oo_int_percent=0; rsi_segs=; s_vi=[CS]v1|267401DC851D2580-4000012F803267BB[CE]; OAX=rnneEkzoA7IACz4K; __utma=30057196.685584106.1290273703.1290273703.1290273703.1; __utmc=30057196; RMFD=011PJr8MO1021wJe; __utmb=30057196.3.9.1290273791381; opt=no-opt;

Response

HTTP/1.1 200 OK
Server: Sun-Java-System-Web-Server/7.0
ETag: W/"4e7e9c1b697ea41a4c483171d3596377"
X-runtime: 257
Content-Type: text/html; charset=utf-8
Proxy-agent: Sun-Java-System-Web-Server/7.0
Cache-Control: private, max-age=11
Date: Sat, 20 Nov 2010 18:22:08 GMT
Content-Length: 30787
Connection: close

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN"
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xmlns:og="http://opengraphprotocol.org/sc
...[SNIP]...
</script>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/main-min.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/ab-min.js" type="text/javascript"></script>
...[SNIP]...
</script> <script src="http://www.googletagservices.com/tag/static/google_services.js" type="text/javascript"></script>
...[SNIP]...
</noscript>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/s_code_p.js" type="text/javascript"></script> <link href="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_style.css" media="screen" rel="stylesheet" type="text/css" /> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_engine_c.js" type="text/javascript"></script> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_conf_en-US_inline.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script type="text/javascript" src="http://js.revsci.net/gateway/gw.js?csid=K05539"></script>
...[SNIP]...

4.131. http://www.bloomberg.com/radio/schedule/  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.bloomberg.com
Path:   /radio/schedule/

Issue detail

The response dynamically includes the following scripts from other domains:

Request

GET /radio/schedule/ HTTP/1.1
Host: www.bloomberg.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmv=30057196.|3=opt=no-opt=1,; s_sess=%20s_ria%3Dflash%257CSilverlight%25204.0%3B%20s_campaign%3Dcof_2%3B%20s_cc%3Dtrue%3B%20ev1%3Dtv%253Ahome%3B%20s_sq%3D%3B; __utmz=30057196.1290273703.1.1.utmcsr=s0.2mdn.net|utmccn=(referral)|utmcmd=referral|utmcct=/1797755/Coffee_v1_300x250.swf; path_cookie=_news; BT=; oo_int_hit=1; oo_int_percent=0; rsi_segs=; s_vi=[CS]v1|267401DC851D2580-4000012F803267BB[CE]; OAX=rnneEkzoA7IACz4K; __utma=30057196.685584106.1290273703.1290273703.1290273703.1; __utmc=30057196; RMFD=011PJr8MO1021wJe; __utmb=30057196.3.9.1290273791381; opt=no-opt;

Response

HTTP/1.1 200 OK
Server: Sun-Java-System-Web-Server/7.0
ETag: W/"0b460d83473b1dadc78ad8adb6aaa76b"
X-runtime: 569
Content-Type: text/html; charset=utf-8
Proxy-agent: Sun-Java-System-Web-Server/7.0
Cache-Control: private, max-age=8
Date: Sat, 20 Nov 2010 18:22:10 GMT
Connection: close
Connection: Transfer-Encoding
Content-Length: 66186

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN"
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xmlns:og="http://opengraphprotocol.org/sc
...[SNIP]...
</script>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/main-min.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/ab-min.js" type="text/javascript"></script>
...[SNIP]...
<body class="radio-schedule radio">
<script src="http://www.googletagservices.com/tag/static/google_services.js" type="text/javascript"></script>
...[SNIP]...
</noscript>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/s_code_p.js" type="text/javascript"></script> <link href="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_style.css" media="screen" rel="stylesheet" type="text/css" /> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_engine_c.js" type="text/javascript"></script> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_conf_en-US_inline.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script type="text/javascript" src="http://js.revsci.net/gateway/gw.js?csid=K05539"></script>
...[SNIP]...

4.132. http://www.bloomberg.com/radio/shows/  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.bloomberg.com
Path:   /radio/shows/

Issue detail

The response dynamically includes the following scripts from other domains:

Request

GET /radio/shows/ HTTP/1.1
Host: www.bloomberg.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmv=30057196.|3=opt=no-opt=1,; s_sess=%20s_ria%3Dflash%257CSilverlight%25204.0%3B%20s_campaign%3Dcof_2%3B%20s_cc%3Dtrue%3B%20ev1%3Dtv%253Ahome%3B%20s_sq%3D%3B; __utmz=30057196.1290273703.1.1.utmcsr=s0.2mdn.net|utmccn=(referral)|utmcmd=referral|utmcct=/1797755/Coffee_v1_300x250.swf; path_cookie=_news; BT=; oo_int_hit=1; oo_int_percent=0; rsi_segs=; s_vi=[CS]v1|267401DC851D2580-4000012F803267BB[CE]; OAX=rnneEkzoA7IACz4K; __utma=30057196.685584106.1290273703.1290273703.1290273703.1; __utmc=30057196; RMFD=011PJr8MO1021wJe; __utmb=30057196.3.9.1290273791381; opt=no-opt;

Response

HTTP/1.1 200 OK
Server: Sun-Java-System-Web-Server/7.0
ETag: W/"df092e2d9a259ee1f3874e608488b37c"
X-runtime: 327
Content-Type: text/html; charset=utf-8
Proxy-agent: Sun-Java-System-Web-Server/7.0
Cache-Control: private, max-age=10
Date: Sat, 20 Nov 2010 18:22:10 GMT
Connection: close
Connection: Transfer-Encoding
Content-Length: 38874

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN"
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xmlns:og="http://opengraphprotocol.org/sc
...[SNIP]...
</script>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/main-min.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/ab-min.js" type="text/javascript"></script>
...[SNIP]...
<body class="radio-shows radio">
<script src="http://www.googletagservices.com/tag/static/google_services.js" type="text/javascript"></script>
...[SNIP]...
</noscript>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/s_code_p.js" type="text/javascript"></script> <link href="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_style.css" media="screen" rel="stylesheet" type="text/css" /> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_engine_c.js" type="text/javascript"></script> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_conf_en-US_inline.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script type="text/javascript" src="http://js.revsci.net/gateway/gw.js?csid=K05539"></script>
...[SNIP]...

4.133. http://www.bloomberg.com/sitemap/  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.bloomberg.com
Path:   /sitemap/

Issue detail

The response dynamically includes the following scripts from other domains:

Request

GET /sitemap/ HTTP/1.1
Host: www.bloomberg.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmv=30057196.|3=opt=no-opt=1,; s_sess=%20s_ria%3Dflash%257CSilverlight%25204.0%3B%20s_campaign%3Dcof_2%3B%20s_cc%3Dtrue%3B%20ev1%3Dtv%253Ahome%3B%20s_sq%3D%3B; __utmz=30057196.1290273703.1.1.utmcsr=s0.2mdn.net|utmccn=(referral)|utmcmd=referral|utmcct=/1797755/Coffee_v1_300x250.swf; path_cookie=_news; BT=; oo_int_hit=1; oo_int_percent=0; rsi_segs=; s_vi=[CS]v1|267401DC851D2580-4000012F803267BB[CE]; OAX=rnneEkzoA7IACz4K; __utma=30057196.685584106.1290273703.1290273703.1290273703.1; __utmc=30057196; RMFD=011PJr8MO1021wJe; __utmb=30057196.3.9.1290273791381; opt=no-opt;

Response

HTTP/1.1 200 OK
Server: Sun-Java-System-Web-Server/7.0
Cache-Control: max-age=900
ETag: W/"a1617ce8fe51f66ac9f1e7d4d1904637"
X-runtime: 111
Content-Type: text/html; charset=utf-8
Cache-Control: max-age=120, private
Proxy-agent: Sun-Java-System-Web-Server/7.0
Date: Sat, 20 Nov 2010 18:22:20 GMT
Content-Length: 29706
Connection: close
Set-Cookie:

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN"
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xmlns:og="http://opengraphprotocol.org/sc
...[SNIP]...
</script>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/main-min.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/ab-min.js" type="text/javascript"></script>
...[SNIP]...
<body class="sitemap">
<script src="http://www.googletagservices.com/tag/static/google_services.js" type="text/javascript"></script>
...[SNIP]...
</noscript>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/s_code_p.js" type="text/javascript"></script> <link href="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_style.css" media="screen" rel="stylesheet" type="text/css" /> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_engine_c.js" type="text/javascript"></script> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_conf_en-US_inline.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script type="text/javascript" src="http://js.revsci.net/gateway/gw.js?csid=K05539"></script>
...[SNIP]...

4.134. http://www.bloomberg.com/solutions/  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.bloomberg.com
Path:   /solutions/

Issue detail

The response dynamically includes the following scripts from other domains:

Request

GET /solutions/ HTTP/1.1
Host: www.bloomberg.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmv=30057196.|3=opt=no-opt=1,; s_sess=%20s_ria%3Dflash%257CSilverlight%25204.0%3B%20s_campaign%3Dcof_2%3B%20s_cc%3Dtrue%3B%20ev1%3Dtv%253Ahome%3B%20s_sq%3D%3B; __utmz=30057196.1290273703.1.1.utmcsr=s0.2mdn.net|utmccn=(referral)|utmcmd=referral|utmcct=/1797755/Coffee_v1_300x250.swf; path_cookie=_news; BT=; oo_int_hit=1; oo_int_percent=0; rsi_segs=; s_vi=[CS]v1|267401DC851D2580-4000012F803267BB[CE]; OAX=rnneEkzoA7IACz4K; __utma=30057196.685584106.1290273703.1290273703.1290273703.1; __utmc=30057196; RMFD=011PJr8MO1021wJe; __utmb=30057196.3.9.1290273791381; opt=no-opt;

Response

HTTP/1.1 200 OK
Server: Sun-Java-System-Web-Server/7.0
Cache-Control: max-age=900
ETag: W/"0e11e8a6533ea3abc07a700c157ccac5"
X-runtime: 770
Content-Type: text/html; charset=utf-8
Cache-Control: max-age=120, private
Proxy-agent: Sun-Java-System-Web-Server/7.0
Date: Sat, 20 Nov 2010 18:22:13 GMT
Connection: close
Connection: Transfer-Encoding
Set-Cookie: ad_description=%2Fsolutions%2Findex; path=/
Content-Length: 32944

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN"
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xmlns:og="http://opengraphprotocol.org/sc
...[SNIP]...
</script>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/main-min.js" type="text/javascript"></script>
...[SNIP]...
<link href="http://cdn.gotraffic.net/v/20101118_153606/stylesheets/prod_swf.css" media="screen" rel="stylesheet" type="text/css" />


<script src="http://ajax.googleapis.com/ajax/libs/swfobject/2.2/swfobject.js" type="text/javascript"></script>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/prod_swf.js" type="text/javascript"></script>
...[SNIP]...
<body class="solutions">
<script src="http://www.googletagservices.com/tag/static/google_services.js" type="text/javascript"></script>
...[SNIP]...
</noscript>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/s_code_p.js" type="text/javascript"></script> <link href="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_style.css" media="screen" rel="stylesheet" type="text/css" /> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_engine_c.js" type="text/javascript"></script> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_conf_en-US_inline.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script type="text/javascript" src="http://js.revsci.net/gateway/gw.js?csid=K05539"></script>
...[SNIP]...

4.135. http://www.bloomberg.com/solutions/bloomberg_news/digital/  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.bloomberg.com
Path:   /solutions/bloomberg_news/digital/

Issue detail

The response dynamically includes the following scripts from other domains:

Request

GET /solutions/bloomberg_news/digital/ HTTP/1.1
Host: www.bloomberg.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmv=30057196.|3=opt=no-opt=1,; s_sess=%20s_ria%3Dflash%257CSilverlight%25204.0%3B%20s_campaign%3Dcof_2%3B%20s_cc%3Dtrue%3B%20ev1%3Dtv%253Ahome%3B%20s_sq%3D%3B; __utmz=30057196.1290273703.1.1.utmcsr=s0.2mdn.net|utmccn=(referral)|utmcmd=referral|utmcct=/1797755/Coffee_v1_300x250.swf; path_cookie=_news; BT=; oo_int_hit=1; oo_int_percent=0; rsi_segs=; s_vi=[CS]v1|267401DC851D2580-4000012F803267BB[CE]; OAX=rnneEkzoA7IACz4K; __utma=30057196.685584106.1290273703.1290273703.1290273703.1; __utmc=30057196; RMFD=011PJr8MO1021wJe; __utmb=30057196.3.9.1290273791381; opt=no-opt;

Response

HTTP/1.1 200 OK
Server: Sun-Java-System-Web-Server/7.0
Cache-Control: max-age=900
ETag: W/"89769108124ee2026aa29ebd20fd69a2"
X-runtime: 115
Content-Type: text/html; charset=utf-8
Cache-Control: max-age=120, private
Proxy-agent: Sun-Java-System-Web-Server/7.0
Date: Sat, 20 Nov 2010 18:22:13 GMT
Content-Length: 30584
Connection: close
Set-Cookie: ad_description=%2Fsolutions%2Fbloomberg_news%2Fdigital; path=/

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN"
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xmlns:og="http://opengraphprotocol.org/sc
...[SNIP]...
</script>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/main-min.js" type="text/javascript"></script>
...[SNIP]...
<link href="http://cdn.gotraffic.net/v/20101118_153606/stylesheets/prod_swf.css" media="screen" rel="stylesheet" type="text/css" />


<script src="http://ajax.googleapis.com/ajax/libs/swfobject/2.2/swfobject.js" type="text/javascript"></script>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/prod_swf.js" type="text/javascript"></script>
...[SNIP]...
<body class="solutions_bloomberg_news_digital">
<script src="http://www.googletagservices.com/tag/static/google_services.js" type="text/javascript"></script>
...[SNIP]...
</noscript>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/s_code_p.js" type="text/javascript"></script> <link href="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_style.css" media="screen" rel="stylesheet" type="text/css" /> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_engine_c.js" type="text/javascript"></script> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_conf_en-US_inline.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script type="text/javascript" src="http://js.revsci.net/gateway/gw.js?csid=K05539"></script>
...[SNIP]...

4.136. http://www.bloomberg.com/solutions/bloomberg_news/television/  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.bloomberg.com
Path:   /solutions/bloomberg_news/television/

Issue detail

The response dynamically includes the following scripts from other domains:

Request

GET /solutions/bloomberg_news/television/ HTTP/1.1
Host: www.bloomberg.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmv=30057196.|3=opt=no-opt=1,; s_sess=%20s_ria%3Dflash%257CSilverlight%25204.0%3B%20s_campaign%3Dcof_2%3B%20s_cc%3Dtrue%3B%20ev1%3Dtv%253Ahome%3B%20s_sq%3D%3B; __utmz=30057196.1290273703.1.1.utmcsr=s0.2mdn.net|utmccn=(referral)|utmcmd=referral|utmcct=/1797755/Coffee_v1_300x250.swf; path_cookie=_news; BT=; oo_int_hit=1; oo_int_percent=0; rsi_segs=; s_vi=[CS]v1|267401DC851D2580-4000012F803267BB[CE]; OAX=rnneEkzoA7IACz4K; __utma=30057196.685584106.1290273703.1290273703.1290273703.1; __utmc=30057196; RMFD=011PJr8MO1021wJe; __utmb=30057196.3.9.1290273791381; opt=no-opt;

Response

HTTP/1.1 200 OK
Server: Sun-Java-System-Web-Server/7.0
Cache-Control: max-age=900
ETag: W/"bd48094630e86cad6c168dbabc4cc7ef"
X-runtime: 134
Content-Type: text/html; charset=utf-8
Cache-Control: max-age=120, private
Proxy-agent: Sun-Java-System-Web-Server/7.0
Date: Sat, 20 Nov 2010 18:22:13 GMT
Content-Length: 28891
Connection: close
Set-Cookie: ad_description=%2Fsolutions%2Fbloomberg_news%2Ftelevision; path=/

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN"
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xmlns:og="http://opengraphprotocol.org/sc
...[SNIP]...
</script>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/main-min.js" type="text/javascript"></script>
...[SNIP]...
<link href="http://cdn.gotraffic.net/v/20101118_153606/stylesheets/prod_swf.css" media="screen" rel="stylesheet" type="text/css" />


<script src="http://ajax.googleapis.com/ajax/libs/swfobject/2.2/swfobject.js" type="text/javascript"></script>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/prod_swf.js" type="text/javascript"></script>
...[SNIP]...
<body class="solutions_bloomberg_news_television">
<script src="http://www.googletagservices.com/tag/static/google_services.js" type="text/javascript"></script>
...[SNIP]...
</noscript>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/s_code_p.js" type="text/javascript"></script> <link href="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_style.css" media="screen" rel="stylesheet" type="text/css" /> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_engine_c.js" type="text/javascript"></script> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_conf_en-US_inline.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script type="text/javascript" src="http://js.revsci.net/gateway/gw.js?csid=K05539"></script>
...[SNIP]...

4.137. http://www.bloomberg.com/sports/  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.bloomberg.com
Path:   /sports/

Issue detail

The response dynamically includes the following scripts from other domains:

Request

GET /sports/ HTTP/1.1
Host: www.bloomberg.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmv=30057196.|3=opt=no-opt=1,; s_sess=%20s_ria%3Dflash%257CSilverlight%25204.0%3B%20s_campaign%3Dcof_2%3B%20s_cc%3Dtrue%3B%20ev1%3Dtv%253Ahome%3B%20s_sq%3D%3B; __utmz=30057196.1290273703.1.1.utmcsr=s0.2mdn.net|utmccn=(referral)|utmcmd=referral|utmcct=/1797755/Coffee_v1_300x250.swf; path_cookie=_news; BT=; oo_int_hit=1; oo_int_percent=0; rsi_segs=; s_vi=[CS]v1|267401DC851D2580-4000012F803267BB[CE]; OAX=rnneEkzoA7IACz4K; __utma=30057196.685584106.1290273703.1290273703.1290273703.1; __utmc=30057196; RMFD=011PJr8MO1021wJe; __utmb=30057196.3.9.1290273791381; opt=no-opt;

Response

HTTP/1.1 200 OK
Server: Sun-Java-System-Web-Server/7.0
ETag: W/"4b437409cd4669df47b7249234cc405a"
X-runtime: 463
Content-Type: text/html; charset=utf-8
Proxy-agent: Sun-Java-System-Web-Server/7.0
Cache-Control: private, max-age=1
Date: Sat, 20 Nov 2010 18:21:46 GMT
Connection: close
Connection: Transfer-Encoding
Content-Length: 41407

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN"
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xmlns:og="http://opengraphprotocol.org/sc
...[SNIP]...
</script>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/main-min.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/ab-min.js" type="text/javascript"></script>
...[SNIP]...
<body class="news sports">
<script src="http://www.googletagservices.com/tag/static/google_services.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script type="text/javascript" src="http://pagead2.googlesyndication.com/pagead/show_ads.js">
</script>
...[SNIP]...
</noscript>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/s_code_p.js" type="text/javascript"></script> <link href="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_style.css" media="screen" rel="stylesheet" type="text/css" /> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_engine_c.js" type="text/javascript"></script> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_conf_en-US_inline.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script type="text/javascript" src="http://js.revsci.net/gateway/gw.js?csid=K05539"></script>
...[SNIP]...

4.138. http://www.bloomberg.com/tv/  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.bloomberg.com
Path:   /tv/

Issue detail

The response dynamically includes the following scripts from other domains:

Request

GET /tv/ HTTP/1.1
Host: www.bloomberg.com
Proxy-Connection: keep-alive
Referer: http://www.bloomberg.com/news/2010-11-20/irish-corporate-tax-rate-increase-isn-t-a-condition-for-aid-sarkozy-says.html
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.7 (KHTML, like Gecko) Chrome/7.0.517.44 Safari/534.7
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: oo_int_percent=0; oo_int_hit=1; OAX=rnneEkzoA7IACz4K; RMFD=011PJr8MO1021wJe; __utmz=30057196.1290273703.1.1.utmcsr=s0.2mdn.net|utmccn=(referral)|utmcmd=referral|utmcct=/1797755/Coffee_v1_300x250.swf; s_vi=[CS]v1|267401DC851D2580-4000012F803267BB[CE]; rsi_segs=; BT=; path_cookie=_news; __utma=30057196.685584106.1290273703.1290273703.1290273703.1; __utmc=30057196; __utmv=30057196.|3=opt=no-opt=1,; __utmb=30057196.2.9.1290273791381; s_sess=%20s_ria%3Dflash%257CSilverlight%25204.0%3B%20s_cc%3Dtrue%3B%20s_campaign%3Dcof_2%3B%20ev1%3Dhome%3B%20s_sq%3Dbloombergcom%253D%252526pid%25253Dhome%252526pidt%25253D1%252526oid%25253Dhttp%2525253A//www.bloomberg.com/news/2010-11-20/irish-corporate-tax-rate-increase-isn-t-a-condition-for-aid%252526ot%25253DA%3B; opt=no-opt

Response

HTTP/1.1 200 OK
Server: Sun-Java-System-Web-Server/7.0
Vary: Accept-Encoding
Proxy-agent: Sun-Java-System-Web-Server/7.0
Last-Modified: Sat, 20 Nov 2010 18:02:08 GMT
Content-Type: text/html
Cache-Control: max-age=420
Date: Sat, 20 Nov 2010 18:02:28 GMT
Connection: close
Content-Length: 38477

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN"
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xmlns:og="http://opengraphprotocol.org/sc
...[SNIP]...
</script>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/main-min.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/ab-min.js" type="text/javascript"></script>
...[SNIP]...
</script> <script src="http://www.googletagservices.com/tag/static/google_services.js" type="text/javascript"></script>
...[SNIP]...
</noscript>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/s_code_p.js" type="text/javascript"></script> <link href="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_style.css" media="screen" rel="stylesheet" type="text/css" /> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_engine_c.js" type="text/javascript"></script> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_conf_en-US_inline.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script type="text/javascript" src="http://js.revsci.net/gateway/gw.js?csid=K05539"></script>
...[SNIP]...

4.139. http://www.bloomberg.com/tv/channel-finder/  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.bloomberg.com
Path:   /tv/channel-finder/

Issue detail

The response dynamically includes the following scripts from other domains:

Request

GET /tv/channel-finder/ HTTP/1.1
Host: www.bloomberg.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmv=30057196.|3=opt=no-opt=1,; s_sess=%20s_ria%3Dflash%257CSilverlight%25204.0%3B%20s_campaign%3Dcof_2%3B%20s_cc%3Dtrue%3B%20ev1%3Dtv%253Ahome%3B%20s_sq%3D%3B; __utmz=30057196.1290273703.1.1.utmcsr=s0.2mdn.net|utmccn=(referral)|utmcmd=referral|utmcct=/1797755/Coffee_v1_300x250.swf; path_cookie=_news; BT=; oo_int_hit=1; oo_int_percent=0; rsi_segs=; s_vi=[CS]v1|267401DC851D2580-4000012F803267BB[CE]; OAX=rnneEkzoA7IACz4K; __utma=30057196.685584106.1290273703.1290273703.1290273703.1; __utmc=30057196; RMFD=011PJr8MO1021wJe; __utmb=30057196.3.9.1290273791381; opt=no-opt;

Response

HTTP/1.1 200 OK
Server: Sun-Java-System-Web-Server/7.0
ETag: W/"4184ac9c3200c99213895c54dac8b530"
X-runtime: 132
Content-Type: text/html; charset=utf-8
Proxy-agent: Sun-Java-System-Web-Server/7.0
Cache-Control: private, max-age=2
Date: Sat, 20 Nov 2010 18:22:08 GMT
Content-Length: 27714
Connection: close

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN"
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xmlns:og="http://opengraphprotocol.org/sc
...[SNIP]...
</script>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/main-min.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/ab-min.js" type="text/javascript"></script>
...[SNIP]...
<body class="tv channel-finder">
<script src="http://www.googletagservices.com/tag/static/google_services.js" type="text/javascript"></script>
...[SNIP]...
</noscript>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/s_code_p.js" type="text/javascript"></script> <link href="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_style.css" media="screen" rel="stylesheet" type="text/css" /> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_engine_c.js" type="text/javascript"></script> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_conf_en-US_inline.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script type="text/javascript" src="http://js.revsci.net/gateway/gw.js?csid=K05539"></script>
...[SNIP]...

4.140. http://www.bloomberg.com/tv/mornings/  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.bloomberg.com
Path:   /tv/mornings/

Issue detail

The response dynamically includes the following scripts from other domains:

Request

GET /tv/mornings/ HTTP/1.1
Host: www.bloomberg.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmv=30057196.|3=opt=no-opt=1,; s_sess=%20s_ria%3Dflash%257CSilverlight%25204.0%3B%20s_campaign%3Dcof_2%3B%20s_cc%3Dtrue%3B%20ev1%3Dtv%253Ahome%3B%20s_sq%3D%3B; __utmz=30057196.1290273703.1.1.utmcsr=s0.2mdn.net|utmccn=(referral)|utmcmd=referral|utmcct=/1797755/Coffee_v1_300x250.swf; path_cookie=_news; BT=; oo_int_hit=1; oo_int_percent=0; rsi_segs=; s_vi=[CS]v1|267401DC851D2580-4000012F803267BB[CE]; OAX=rnneEkzoA7IACz4K; __utma=30057196.685584106.1290273703.1290273703.1290273703.1; __utmc=30057196; RMFD=011PJr8MO1021wJe; __utmb=30057196.3.9.1290273791381; opt=no-opt;

Response

HTTP/1.1 200 OK
Server: Sun-Java-System-Web-Server/7.0
ETag: W/"7a69332a6ca717b995f463d45e58b12e"
X-runtime: 235
Content-Type: text/html; charset=utf-8
Proxy-agent: Sun-Java-System-Web-Server/7.0
Cache-Control: private, max-age=11
Date: Sat, 20 Nov 2010 18:22:08 GMT
Connection: close
Connection: Transfer-Encoding
Content-Length: 34981

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN"
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xmlns:og="http://opengraphprotocol.org/sc
...[SNIP]...
</script>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/main-min.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/ab-min.js" type="text/javascript"></script>
...[SNIP]...
<body class="mornings">
<script src="http://www.googletagservices.com/tag/static/google_services.js" type="text/javascript"></script>
...[SNIP]...
</noscript>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/s_code_p.js" type="text/javascript"></script> <link href="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_style.css" media="screen" rel="stylesheet" type="text/css" /> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_engine_c.js" type="text/javascript"></script> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_conf_en-US_inline.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script type="text/javascript" src="http://js.revsci.net/gateway/gw.js?csid=K05539"></script>
...[SNIP]...

4.141. http://www.bloomberg.com/tv/schedule/  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.bloomberg.com
Path:   /tv/schedule/

Issue detail

The response dynamically includes the following scripts from other domains:

Request

GET /tv/schedule/ HTTP/1.1
Host: www.bloomberg.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmv=30057196.|3=opt=no-opt=1,; s_sess=%20s_ria%3Dflash%257CSilverlight%25204.0%3B%20s_campaign%3Dcof_2%3B%20s_cc%3Dtrue%3B%20ev1%3Dtv%253Ahome%3B%20s_sq%3D%3B; __utmz=30057196.1290273703.1.1.utmcsr=s0.2mdn.net|utmccn=(referral)|utmcmd=referral|utmcct=/1797755/Coffee_v1_300x250.swf; path_cookie=_news; BT=; oo_int_hit=1; oo_int_percent=0; rsi_segs=; s_vi=[CS]v1|267401DC851D2580-4000012F803267BB[CE]; OAX=rnneEkzoA7IACz4K; __utma=30057196.685584106.1290273703.1290273703.1290273703.1; __utmc=30057196; RMFD=011PJr8MO1021wJe; __utmb=30057196.3.9.1290273791381; opt=no-opt;

Response

HTTP/1.1 200 OK
Server: Sun-Java-System-Web-Server/7.0
ETag: W/"93bc1f9b41c6f8387c68428f62bfdbde"
X-runtime: 1560
Content-Type: text/html; charset=utf-8
Proxy-agent: Sun-Java-System-Web-Server/7.0
Cache-Control: private, max-age=14
Date: Sat, 20 Nov 2010 18:22:06 GMT
Connection: close
Connection: Transfer-Encoding
Content-Length: 104365

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN"
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xmlns:og="http://opengraphprotocol.org/sc
...[SNIP]...
</script>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/main-min.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/ab-min.js" type="text/javascript"></script>
...[SNIP]...
<body class="tv">
<script src="http://www.googletagservices.com/tag/static/google_services.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script type="text/javascript" src="http://pagead2.googlesyndication.com/pagead/show_ads.js">
</script>
...[SNIP]...
</noscript>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/s_code_p.js" type="text/javascript"></script> <link href="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_style.css" media="screen" rel="stylesheet" type="text/css" /> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_engine_c.js" type="text/javascript"></script> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_conf_en-US_inline.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script type="text/javascript" src="http://js.revsci.net/gateway/gw.js?csid=K05539"></script>
...[SNIP]...

4.142. http://www.bloomberg.com/tv/shows/  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.bloomberg.com
Path:   /tv/shows/

Issue detail

The response dynamically includes the following scripts from other domains:

Request

GET /tv/shows/ HTTP/1.1
Host: www.bloomberg.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmv=30057196.|3=opt=no-opt=1,; s_sess=%20s_ria%3Dflash%257CSilverlight%25204.0%3B%20s_campaign%3Dcof_2%3B%20s_cc%3Dtrue%3B%20ev1%3Dtv%253Ahome%3B%20s_sq%3D%3B; __utmz=30057196.1290273703.1.1.utmcsr=s0.2mdn.net|utmccn=(referral)|utmcmd=referral|utmcct=/1797755/Coffee_v1_300x250.swf; path_cookie=_news; BT=; oo_int_hit=1; oo_int_percent=0; rsi_segs=; s_vi=[CS]v1|267401DC851D2580-4000012F803267BB[CE]; OAX=rnneEkzoA7IACz4K; __utma=30057196.685584106.1290273703.1290273703.1290273703.1; __utmc=30057196; RMFD=011PJr8MO1021wJe; __utmb=30057196.3.9.1290273791381; opt=no-opt;

Response

HTTP/1.1 200 OK
Server: Sun-Java-System-Web-Server/7.0
ETag: W/"be7baf95c249308b5e9864a39b3465b7"
X-runtime: 397
Content-Type: text/html; charset=utf-8
Proxy-agent: Sun-Java-System-Web-Server/7.0
Cache-Control: private, max-age=10
Date: Sat, 20 Nov 2010 18:22:06 GMT
Connection: close
Connection: Transfer-Encoding
Content-Length: 46327

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN"
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xmlns:og="http://opengraphprotocol.org/sc
...[SNIP]...
</script>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/main-min.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/ab-min.js" type="text/javascript"></script>
...[SNIP]...
<body class="tv">
<script src="http://www.googletagservices.com/tag/static/google_services.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script type="text/javascript" src="http://pagead2.googlesyndication.com/pagead/show_ads.js">
</script>
...[SNIP]...
</noscript>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/s_code_p.js" type="text/javascript"></script> <link href="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_style.css" media="screen" rel="stylesheet" type="text/css" /> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_engine_c.js" type="text/javascript"></script> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_conf_en-US_inline.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script type="text/javascript" src="http://js.revsci.net/gateway/gw.js?csid=K05539"></script>
...[SNIP]...

4.143. http://www.bloomberg.com/video/  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.bloomberg.com
Path:   /video/

Issue detail

The response dynamically includes the following scripts from other domains:

Request

GET /video/ HTTP/1.1
Host: www.bloomberg.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmv=30057196.|3=opt=no-opt=1,; s_sess=%20s_ria%3Dflash%257CSilverlight%25204.0%3B%20s_campaign%3Dcof_2%3B%20s_cc%3Dtrue%3B%20ev1%3Dtv%253Ahome%3B%20s_sq%3D%3B; __utmz=30057196.1290273703.1.1.utmcsr=s0.2mdn.net|utmccn=(referral)|utmcmd=referral|utmcct=/1797755/Coffee_v1_300x250.swf; path_cookie=_news; BT=; oo_int_hit=1; oo_int_percent=0; rsi_segs=; s_vi=[CS]v1|267401DC851D2580-4000012F803267BB[CE]; OAX=rnneEkzoA7IACz4K; __utma=30057196.685584106.1290273703.1290273703.1290273703.1; __utmc=30057196; RMFD=011PJr8MO1021wJe; __utmb=30057196.3.9.1290273791381; opt=no-opt;

Response

HTTP/1.1 200 OK
Server: Sun-Java-System-Web-Server/7.0
ETag: W/"ee6599fea6de02a8a231318c41501d43"
X-runtime: 1455
Content-Type: text/html; charset=utf-8
Proxy-agent: Sun-Java-System-Web-Server/7.0
Cache-Control: private, max-age=14
Date: Sat, 20 Nov 2010 18:21:56 GMT
Connection: close
Connection: Transfer-Encoding
Content-Length: 40880

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN"
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xmlns:og="http://opengraphprotocol.org/sc
...[SNIP]...
</script>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/main-min.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/ab-min.js" type="text/javascript"></script>
...[SNIP]...
<body class="video">
<script src="http://www.googletagservices.com/tag/static/google_services.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script type="text/javascript" src="http://pagead2.googlesyndication.com/pagead/show_ads.js">
</script>
...[SNIP]...
</noscript>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/s_code_p.js" type="text/javascript"></script> <link href="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_style.css" media="screen" rel="stylesheet" type="text/css" /> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_engine_c.js" type="text/javascript"></script> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_conf_en-US_inline.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script type="text/javascript" src="http://js.revsci.net/gateway/gw.js?csid=K05539"></script>
...[SNIP]...

4.144. http://www.bloomberg.com/video/64638026/  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.bloomberg.com
Path:   /video/64638026/

Issue detail

The response dynamically includes the following scripts from other domains:

Request

GET /video/64638026/ HTTP/1.1
Host: www.bloomberg.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmv=30057196.|3=opt=no-opt=1,; s_sess=%20s_ria%3Dflash%257CSilverlight%25204.0%3B%20s_campaign%3Dcof_2%3B%20s_cc%3Dtrue%3B%20ev1%3Dtv%253Ahome%3B%20s_sq%3D%3B; __utmz=30057196.1290273703.1.1.utmcsr=s0.2mdn.net|utmccn=(referral)|utmcmd=referral|utmcct=/1797755/Coffee_v1_300x250.swf; path_cookie=_news; BT=; oo_int_hit=1; oo_int_percent=0; rsi_segs=; s_vi=[CS]v1|267401DC851D2580-4000012F803267BB[CE]; OAX=rnneEkzoA7IACz4K; __utma=30057196.685584106.1290273703.1290273703.1290273703.1; __utmc=30057196; RMFD=011PJr8MO1021wJe; __utmb=30057196.3.9.1290273791381; opt=no-opt;

Response

HTTP/1.1 200 OK
Server: Sun-Java-System-Web-Server/7.0
ETag: W/"3db6731029a9e41ffec71156721a889b"
X-runtime: 351
Content-Type: text/html; charset=utf-8
Proxy-agent: Sun-Java-System-Web-Server/7.0
Cache-Control: private, max-age=50
Date: Sat, 20 Nov 2010 18:22:01 GMT
Content-Length: 30484
Connection: close

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN"
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xmlns:og="http://opengraphprotocol.org/sc
...[SNIP]...
</script>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/main-min.js" type="text/javascript"></script> <script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/ab-min.js" type="text/javascript"></script>
...[SNIP]...
<body class="video">
<script src="http://www.googletagservices.com/tag/static/google_services.js" type="text/javascript"></script>
...[SNIP]...
</ul>


<script type="text/javascript" src="http://platform.twitter.com/widgets.js"></script>
...[SNIP]...
<div class="component" >
<script type="text/javascript" src="http://cdn.taboolasyndication.com/libtrc/bloomberg/rbox.js?video_id=64638026">
</script>
...[SNIP]...
</noscript>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/s_code_p.js" type="text/javascript"></script> <link href="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_style.css" media="screen" rel="stylesheet" type="text/css" /> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_engine_c.js" type="text/javascript"></script> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_conf_en-US_inline.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script type="text/javascript" src="http://js.revsci.net/gateway/gw.js?csid=K05539"></script>
...[SNIP]...

4.145. http://www.bloomberg.com/video/64654492/  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.bloomberg.com
Path:   /video/64654492/

Issue detail

The response dynamically includes the following scripts from other domains:

Request

GET /video/64654492/ HTTP/1.1
Host: www.bloomberg.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmv=30057196.|3=opt=no-opt=1,; s_sess=%20s_ria%3Dflash%257CSilverlight%25204.0%3B%20s_campaign%3Dcof_2%3B%20s_cc%3Dtrue%3B%20ev1%3Dtv%253Ahome%3B%20s_sq%3D%3B; __utmz=30057196.1290273703.1.1.utmcsr=s0.2mdn.net|utmccn=(referral)|utmcmd=referral|utmcct=/1797755/Coffee_v1_300x250.swf; path_cookie=_news; BT=; oo_int_hit=1; oo_int_percent=0; rsi_segs=; s_vi=[CS]v1|267401DC851D2580-4000012F803267BB[CE]; OAX=rnneEkzoA7IACz4K; __utma=30057196.685584106.1290273703.1290273703.1290273703.1; __utmc=30057196; RMFD=011PJr8MO1021wJe; __utmb=30057196.3.9.1290273791381; opt=no-opt;

Response

HTTP/1.1 200 OK
Server: Sun-Java-System-Web-Server/7.0
ETag: W/"05a29c8d496a874ae4e655030703807a"
X-runtime: 339
Content-Type: text/html; charset=utf-8
Proxy-agent: Sun-Java-System-Web-Server/7.0
Cache-Control: private, max-age=12
Date: Sat, 20 Nov 2010 18:21:59 GMT
Content-Length: 30475
Connection: close

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN"
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xmlns:og="http://opengraphprotocol.org/sc
...[SNIP]...
</script>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/main-min.js" type="text/javascript"></script> <script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/ab-min.js" type="text/javascript"></script>
...[SNIP]...
<body class="video">
<script src="http://www.googletagservices.com/tag/static/google_services.js" type="text/javascript"></script>
...[SNIP]...
</ul>


<script type="text/javascript" src="http://platform.twitter.com/widgets.js"></script>
...[SNIP]...
<div class="component" >
<script type="text/javascript" src="http://cdn.taboolasyndication.com/libtrc/bloomberg/rbox.js?video_id=64654492">
</script>
...[SNIP]...
</noscript>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/s_code_p.js" type="text/javascript"></script> <link href="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_style.css" media="screen" rel="stylesheet" type="text/css" /> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_engine_c.js" type="text/javascript"></script> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_conf_en-US_inline.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script type="text/javascript" src="http://js.revsci.net/gateway/gw.js?csid=K05539"></script>
...[SNIP]...

4.146. http://www.bloomberg.com/video/64661934/  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.bloomberg.com
Path:   /video/64661934/

Issue detail

The response dynamically includes the following scripts from other domains:

Request

GET /video/64661934/ HTTP/1.1
Host: www.bloomberg.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmv=30057196.|3=opt=no-opt=1,; s_sess=%20s_ria%3Dflash%257CSilverlight%25204.0%3B%20s_campaign%3Dcof_2%3B%20s_cc%3Dtrue%3B%20ev1%3Dtv%253Ahome%3B%20s_sq%3D%3B; __utmz=30057196.1290273703.1.1.utmcsr=s0.2mdn.net|utmccn=(referral)|utmcmd=referral|utmcct=/1797755/Coffee_v1_300x250.swf; path_cookie=_news; BT=; oo_int_hit=1; oo_int_percent=0; rsi_segs=; s_vi=[CS]v1|267401DC851D2580-4000012F803267BB[CE]; OAX=rnneEkzoA7IACz4K; __utma=30057196.685584106.1290273703.1290273703.1290273703.1; __utmc=30057196; RMFD=011PJr8MO1021wJe; __utmb=30057196.3.9.1290273791381; opt=no-opt;

Response

HTTP/1.1 200 OK
Server: Sun-Java-System-Web-Server/7.0
ETag: W/"1c8e56f9669f519f4508c6e77fef6bbf"
X-runtime: 332
Content-Type: text/html; charset=utf-8
Proxy-agent: Sun-Java-System-Web-Server/7.0
Cache-Control: private, max-age=50
Date: Sat, 20 Nov 2010 18:22:00 GMT
Content-Length: 29114
Connection: close

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN"
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xmlns:og="http://opengraphprotocol.org/sc
...[SNIP]...
</script>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/main-min.js" type="text/javascript"></script> <script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/ab-min.js" type="text/javascript"></script>
...[SNIP]...
<body class="video">
<script src="http://www.googletagservices.com/tag/static/google_services.js" type="text/javascript"></script>
...[SNIP]...
</ul>


<script type="text/javascript" src="http://platform.twitter.com/widgets.js"></script>
...[SNIP]...
<div class="component" >
<script type="text/javascript" src="http://cdn.taboolasyndication.com/libtrc/bloomberg/rbox.js?video_id=64661934">
</script>
...[SNIP]...
</noscript>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/s_code_p.js" type="text/javascript"></script> <link href="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_style.css" media="screen" rel="stylesheet" type="text/css" /> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_engine_c.js" type="text/javascript"></script> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_conf_en-US_inline.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script type="text/javascript" src="http://js.revsci.net/gateway/gw.js?csid=K05539"></script>
...[SNIP]...

4.147. http://www.bloomberg.com/video/64663448/  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.bloomberg.com
Path:   /video/64663448/

Issue detail

The response dynamically includes the following scripts from other domains:

Request

GET /video/64663448/ HTTP/1.1
Host: www.bloomberg.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmv=30057196.|3=opt=no-opt=1,; s_sess=%20s_ria%3Dflash%257CSilverlight%25204.0%3B%20s_campaign%3Dcof_2%3B%20s_cc%3Dtrue%3B%20ev1%3Dtv%253Ahome%3B%20s_sq%3D%3B; __utmz=30057196.1290273703.1.1.utmcsr=s0.2mdn.net|utmccn=(referral)|utmcmd=referral|utmcct=/1797755/Coffee_v1_300x250.swf; path_cookie=_news; BT=; oo_int_hit=1; oo_int_percent=0; rsi_segs=; s_vi=[CS]v1|267401DC851D2580-4000012F803267BB[CE]; OAX=rnneEkzoA7IACz4K; __utma=30057196.685584106.1290273703.1290273703.1290273703.1; __utmc=30057196; RMFD=011PJr8MO1021wJe; __utmb=30057196.3.9.1290273791381; opt=no-opt;

Response

HTTP/1.1 200 OK
Server: Sun-Java-System-Web-Server/7.0
ETag: W/"88c244de65b53d83dc637a113c98fd13"
X-runtime: 337
Content-Type: text/html; charset=utf-8
Proxy-agent: Sun-Java-System-Web-Server/7.0
Cache-Control: private, max-age=1
Date: Sat, 20 Nov 2010 18:22:00 GMT
Content-Length: 28625
Connection: close

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN"
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xmlns:og="http://opengraphprotocol.org/sc
...[SNIP]...
</script>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/main-min.js" type="text/javascript"></script> <script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/ab-min.js" type="text/javascript"></script>
...[SNIP]...
<body class="video">
<script src="http://www.googletagservices.com/tag/static/google_services.js" type="text/javascript"></script>
...[SNIP]...
</ul>


<script type="text/javascript" src="http://platform.twitter.com/widgets.js"></script>
...[SNIP]...
<div class="component" >
<script type="text/javascript" src="http://cdn.taboolasyndication.com/libtrc/bloomberg/rbox.js?video_id=64663448">
</script>
...[SNIP]...
</noscript>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/s_code_p.js" type="text/javascript"></script> <link href="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_style.css" media="screen" rel="stylesheet" type="text/css" /> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_engine_c.js" type="text/javascript"></script> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_conf_en-US_inline.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script type="text/javascript" src="http://js.revsci.net/gateway/gw.js?csid=K05539"></script>
...[SNIP]...

4.148. http://www.bloomberg.com/video/64664632/  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.bloomberg.com
Path:   /video/64664632/

Issue detail

The response dynamically includes the following scripts from other domains:

Request

GET /video/64664632/ HTTP/1.1
Host: www.bloomberg.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmv=30057196.|3=opt=no-opt=1,; s_sess=%20s_ria%3Dflash%257CSilverlight%25204.0%3B%20s_campaign%3Dcof_2%3B%20s_cc%3Dtrue%3B%20ev1%3Dtv%253Ahome%3B%20s_sq%3D%3B; __utmz=30057196.1290273703.1.1.utmcsr=s0.2mdn.net|utmccn=(referral)|utmcmd=referral|utmcct=/1797755/Coffee_v1_300x250.swf; path_cookie=_news; BT=; oo_int_hit=1; oo_int_percent=0; rsi_segs=; s_vi=[CS]v1|267401DC851D2580-4000012F803267BB[CE]; OAX=rnneEkzoA7IACz4K; __utma=30057196.685584106.1290273703.1290273703.1290273703.1; __utmc=30057196; RMFD=011PJr8MO1021wJe; __utmb=30057196.3.9.1290273791381; opt=no-opt;

Response

HTTP/1.1 200 OK
Server: Sun-Java-System-Web-Server/7.0
ETag: W/"eb025ddae80a72d7591e831237f4b465"
X-runtime: 323
Content-Type: text/html; charset=utf-8
Proxy-agent: Sun-Java-System-Web-Server/7.0
Cache-Control: private, max-age=13
Date: Sat, 20 Nov 2010 18:22:01 GMT
Content-Length: 29661
Connection: close

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN"
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xmlns:og="http://opengraphprotocol.org/sc
...[SNIP]...
</script>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/main-min.js" type="text/javascript"></script> <script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/ab-min.js" type="text/javascript"></script>
...[SNIP]...
<body class="video">
<script src="http://www.googletagservices.com/tag/static/google_services.js" type="text/javascript"></script>
...[SNIP]...
</ul>


<script type="text/javascript" src="http://platform.twitter.com/widgets.js"></script>
...[SNIP]...
<div class="component" >
<script type="text/javascript" src="http://cdn.taboolasyndication.com/libtrc/bloomberg/rbox.js?video_id=64664632">
</script>
...[SNIP]...
</noscript>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/s_code_p.js" type="text/javascript"></script> <link href="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_style.css" media="screen" rel="stylesheet" type="text/css" /> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_engine_c.js" type="text/javascript"></script> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_conf_en-US_inline.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script type="text/javascript" src="http://js.revsci.net/gateway/gw.js?csid=K05539"></script>
...[SNIP]...

4.149. http://www.bloomberg.com/video/featured  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.bloomberg.com
Path:   /video/featured

Issue detail

The response dynamically includes the following scripts from other domains:

Request

GET /video/featured HTTP/1.1
Host: www.bloomberg.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmv=30057196.|3=opt=no-opt=1,; s_sess=%20s_ria%3Dflash%257CSilverlight%25204.0%3B%20s_campaign%3Dcof_2%3B%20s_cc%3Dtrue%3B%20ev1%3Dtv%253Ahome%3B%20s_sq%3D%3B; __utmz=30057196.1290273703.1.1.utmcsr=s0.2mdn.net|utmccn=(referral)|utmcmd=referral|utmcct=/1797755/Coffee_v1_300x250.swf; path_cookie=_news; BT=; oo_int_hit=1; oo_int_percent=0; rsi_segs=; s_vi=[CS]v1|267401DC851D2580-4000012F803267BB[CE]; OAX=rnneEkzoA7IACz4K; __utma=30057196.685584106.1290273703.1290273703.1290273703.1; __utmc=30057196; RMFD=011PJr8MO1021wJe; __utmb=30057196.3.9.1290273791381; opt=no-opt;

Response

HTTP/1.1 200 OK
Server: Sun-Java-System-Web-Server/7.0
ETag: W/"6153e38a01543a99be4aacdd05a98cd2"
X-runtime: 455
Content-Type: text/html; charset=utf-8
Proxy-agent: Sun-Java-System-Web-Server/7.0
Cache-Control: private, max-age=6
Date: Sat, 20 Nov 2010 18:21:58 GMT
Connection: close
Connection: Transfer-Encoding
Content-Length: 33774

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN"
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xmlns:og="http://opengraphprotocol.org/sc
...[SNIP]...
</script>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/main-min.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/ab-min.js" type="text/javascript"></script>
...[SNIP]...
<body class="video_show_index">
<script src="http://www.googletagservices.com/tag/static/google_services.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script type="text/javascript" src="http://pagead2.googlesyndication.com/pagead/show_ads.js">
</script>
...[SNIP]...
</noscript>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/s_code_p.js" type="text/javascript"></script> <link href="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_style.css" media="screen" rel="stylesheet" type="text/css" /> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_engine_c.js" type="text/javascript"></script> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_conf_en-US_inline.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script type="text/javascript" src="http://js.revsci.net/gateway/gw.js?csid=K05539"></script>
...[SNIP]...

4.150. http://www.bloomberg.com/video/featured/  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.bloomberg.com
Path:   /video/featured/

Issue detail

The response dynamically includes the following scripts from other domains:

Request

GET /video/featured/ HTTP/1.1
Host: www.bloomberg.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmv=30057196.|3=opt=no-opt=1,; s_sess=%20s_ria%3Dflash%257CSilverlight%25204.0%3B%20s_campaign%3Dcof_2%3B%20s_cc%3Dtrue%3B%20ev1%3Dtv%253Ahome%3B%20s_sq%3D%3B; __utmz=30057196.1290273703.1.1.utmcsr=s0.2mdn.net|utmccn=(referral)|utmcmd=referral|utmcct=/1797755/Coffee_v1_300x250.swf; path_cookie=_news; BT=; oo_int_hit=1; oo_int_percent=0; rsi_segs=; s_vi=[CS]v1|267401DC851D2580-4000012F803267BB[CE]; OAX=rnneEkzoA7IACz4K; __utma=30057196.685584106.1290273703.1290273703.1290273703.1; __utmc=30057196; RMFD=011PJr8MO1021wJe; __utmb=30057196.3.9.1290273791381; opt=no-opt;

Response

HTTP/1.1 200 OK
Server: Sun-Java-System-Web-Server/7.0
ETag: W/"5ae37f1c3d608bdf1af58db95bf8d2a8"
X-runtime: 446
Content-Type: text/html; charset=utf-8
Proxy-agent: Sun-Java-System-Web-Server/7.0
Cache-Control: private, max-age=1
Date: Sat, 20 Nov 2010 18:22:00 GMT
Connection: close
Connection: Transfer-Encoding
Content-Length: 33774

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN"
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xmlns:og="http://opengraphprotocol.org/sc
...[SNIP]...
</script>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/main-min.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/ab-min.js" type="text/javascript"></script>
...[SNIP]...
<body class="video_show_index">
<script src="http://www.googletagservices.com/tag/static/google_services.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script type="text/javascript" src="http://pagead2.googlesyndication.com/pagead/show_ads.js">
</script>
...[SNIP]...
</noscript>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/s_code_p.js" type="text/javascript"></script> <link href="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_style.css" media="screen" rel="stylesheet" type="text/css" /> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_engine_c.js" type="text/javascript"></script> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_conf_en-US_inline.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script type="text/javascript" src="http://js.revsci.net/gateway/gw.js?csid=K05539"></script>
...[SNIP]...

4.151. http://www.bloomberg.com/video/forex-trading/  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.bloomberg.com
Path:   /video/forex-trading/

Issue detail

The response dynamically includes the following scripts from other domains:

Request

GET /video/forex-trading/ HTTP/1.1
Host: www.bloomberg.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmv=30057196.|3=opt=no-opt=1,; s_sess=%20s_ria%3Dflash%257CSilverlight%25204.0%3B%20s_campaign%3Dcof_2%3B%20s_cc%3Dtrue%3B%20ev1%3Dtv%253Ahome%3B%20s_sq%3D%3B; __utmz=30057196.1290273703.1.1.utmcsr=s0.2mdn.net|utmccn=(referral)|utmcmd=referral|utmcct=/1797755/Coffee_v1_300x250.swf; path_cookie=_news; BT=; oo_int_hit=1; oo_int_percent=0; rsi_segs=; s_vi=[CS]v1|267401DC851D2580-4000012F803267BB[CE]; OAX=rnneEkzoA7IACz4K; __utma=30057196.685584106.1290273703.1290273703.1290273703.1; __utmc=30057196; RMFD=011PJr8MO1021wJe; __utmb=30057196.3.9.1290273791381; opt=no-opt;

Response

HTTP/1.1 200 OK
Server: Sun-Java-System-Web-Server/7.0
ETag: W/"2bbc54ff1f91603a9e1f8c7a2ce961b1"
X-runtime: 761
Content-Type: text/html; charset=utf-8
Proxy-agent: Sun-Java-System-Web-Server/7.0
Cache-Control: private, max-age=10
Date: Sat, 20 Nov 2010 18:21:56 GMT
Connection: close
Connection: Transfer-Encoding
Content-Length: 43987

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN"
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xmlns:og="http://opengraphprotocol.org/sc
...[SNIP]...
</script>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/main-min.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/ab-min.js" type="text/javascript"></script>
...[SNIP]...
<body class="">
<script src="http://www.googletagservices.com/tag/static/google_services.js" type="text/javascript"></script>
...[SNIP]...
</noscript>
<script src="http://cdn.gotraffic.net/v/20101118_153606/javascripts/s_code_p.js" type="text/javascript"></script> <link href="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_style.css" media="screen" rel="stylesheet" type="text/css" /> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_engine_c.js" type="text/javascript"></script> <script src="http://cdn.gotraffic.net/v/20101118_153606/onlineopinionOO4S/oo_conf_en-US_inline.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script type="text/javascript" src="http://js.revsci.net/gateway/gw.js?csid=K05539"></script>
...[SNIP]...

4.152. http://www.bloomberg.com/webad  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.bloomberg.com
Path:   /webad

Issue detail

The response dynamically includes the following scripts from other domains:

Request

GET /webad HTTP/1.1
Host: www.bloomberg.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmv=30057196.|3=opt=no-opt=1,; s_sess=%20s_ria%3Dflash%257CSilverlight%25204.0%3B%20s_campaign%3Dcof_2%3B%20s_cc%3Dtrue%3B%20ev1%3Dtv%253Ahome%3B%20s_sq%3D%3B; __utmz=30057196.1290273703.1.1.utmcsr=s0.2mdn.net|utmccn=(referral)|utmcmd=referral|utmcct=/1797755/Coffee_v1_300x250.swf; path_cookie=_news; BT=; oo_int_hit=1; oo_int_percent=0; rsi_segs=; s_vi=[CS]v1|267401DC851D2580-4000012F803267BB[CE]; OAX=rnneEkzoA7IACz4K; __utma=30057196.685584106.1290273703.1290273703.1290273703.1; __utmc=30057196; RMFD=011PJr8MO1021wJe; __utmb=30057196.3.9.1290273791381; opt=no-opt;

Response

HTTP/1.1 404 Not Found
Server: Sun-Java-System-Web-Server/7.0
Cache-Control: max-age=900
Content-Type: text/html
X-N: S
Date: Sat, 20 Nov 2010 18:22:22 GMT
Content-Length: 19583
Connection: close


<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN"
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head><meta http-equiv="Content-Type"
...[SNIP]...
<body class="">

<script src="http://www.googletagservices.com/tag/static/google_services.js" type="text/javascript"></script>
...[SNIP]...
<!-- Revenue Science -->

<script type="text/javascript" src="http://js.revsci.net/gateway/gw.js?csid=K05539"></script>
...[SNIP]...
<!-- Quantcast -->

<script src="http://edge.quantserve.com/quant.js" type="text/javascript">// </script>
...[SNIP]...

5. Cookie without HttpOnly flag set  previous  next
There are 12 instances of this issue:

Issue background

If the HttpOnly attribute is set on a cookie, then the cookie's value cannot be read or set by client-side JavaScript. This measure can prevent certain client-side attacks, such as cross-site scripting, from trivially capturing the cookie's value via an injected script.

Issue remediation

There is usually no good reason not to set the HttpOnly flag on all cookies. Unless you specifically require legitimate client-side scripts within your application to read or set a cookie's value, you should set the HttpOnly flag by including this attribute within the relevant Set-cookie directive.

You should be aware that the restrictions imposed by the HttpOnly flag can potentially be circumvented in some circumstances, and that numerous other serious attacks can be delivered by client-side script injection, aside from simple cookie stealing.



5.1. http://www.bloomberg.com/about/  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.bloomberg.com
Path:   /about/

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /about/ HTTP/1.1
Host: www.bloomberg.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmv=30057196.|3=opt=no-opt=1,; s_sess=%20s_ria%3Dflash%257CSilverlight%25204.0%3B%20s_campaign%3Dcof_2%3B%20s_cc%3Dtrue%3B%20ev1%3Dtv%253Ahome%3B%20s_sq%3D%3B; __utmz=30057196.1290273703.1.1.utmcsr=s0.2mdn.net|utmccn=(referral)|utmcmd=referral|utmcct=/1797755/Coffee_v1_300x250.swf; path_cookie=_news; BT=; oo_int_hit=1; oo_int_percent=0; rsi_segs=; s_vi=[CS]v1|267401DC851D2580-4000012F803267BB[CE]; OAX=rnneEkzoA7IACz4K; __utma=30057196.685584106.1290273703.1290273703.1290273703.1; __utmc=30057196; RMFD=011PJr8MO1021wJe; __utmb=30057196.3.9.1290273791381; opt=no-opt;

Response

HTTP/1.1 200 OK
Server: Sun-Java-System-Web-Server/7.0
Cache-Control: max-age=900
ETag: W/"953173fa34438143ee36f8ce0f8b7acf"
X-runtime: 123
Content-Type: text/html; charset=utf-8
Cache-Control: max-age=120, private
Proxy-agent: Sun-Java-System-Web-Server/7.0
Date: Sat, 20 Nov 2010 18:22:14 GMT
Content-Length: 28304
Connection: close
Set-Cookie: ad_description=%2Fabout%2Findex; path=/

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN"
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xmlns:og="http://opengraphprotocol.org/sc
...[SNIP]...

5.2. http://www.bloomberg.com/about/careers/  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.bloomberg.com
Path:   /about/careers/

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /about/careers/ HTTP/1.1
Host: www.bloomberg.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmv=30057196.|3=opt=no-opt=1,; s_sess=%20s_ria%3Dflash%257CSilverlight%25204.0%3B%20s_campaign%3Dcof_2%3B%20s_cc%3Dtrue%3B%20ev1%3Dtv%253Ahome%3B%20s_sq%3D%3B; __utmz=30057196.1290273703.1.1.utmcsr=s0.2mdn.net|utmccn=(referral)|utmcmd=referral|utmcct=/1797755/Coffee_v1_300x250.swf; path_cookie=_news; BT=; oo_int_hit=1; oo_int_percent=0; rsi_segs=; s_vi=[CS]v1|267401DC851D2580-4000012F803267BB[CE]; OAX=rnneEkzoA7IACz4K; __utma=30057196.685584106.1290273703.1290273703.1290273703.1; __utmc=30057196; RMFD=011PJr8MO1021wJe; __utmb=30057196.3.9.1290273791381; opt=no-opt;

Response

HTTP/1.1 200 OK
Server: Sun-Java-System-Web-Server/7.0
Cache-Control: max-age=900
ETag: W/"d094de09c7ffc079235b0d0ed6ecc415"
X-runtime: 109
Content-Type: text/html; charset=utf-8
Cache-Control: max-age=120, private
Proxy-agent: Sun-Java-System-Web-Server/7.0
Date: Sat, 20 Nov 2010 18:22:16 GMT
Connection: close
Connection: Transfer-Encoding
Set-Cookie: ad_description=%2Fabout%2Fcareers%2Findex; path=/
Content-Length: 36779

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN"
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xmlns:og="http://opengraphprotocol.org/sc
...[SNIP]...

5.3. http://www.bloomberg.com/about/contact/  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.bloomberg.com
Path:   /about/contact/

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /about/contact/ HTTP/1.1
Host: www.bloomberg.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmv=30057196.|3=opt=no-opt=1,; s_sess=%20s_ria%3Dflash%257CSilverlight%25204.0%3B%20s_campaign%3Dcof_2%3B%20s_cc%3Dtrue%3B%20ev1%3Dtv%253Ahome%3B%20s_sq%3D%3B; __utmz=30057196.1290273703.1.1.utmcsr=s0.2mdn.net|utmccn=(referral)|utmcmd=referral|utmcct=/1797755/Coffee_v1_300x250.swf; path_cookie=_news; BT=; oo_int_hit=1; oo_int_percent=0; rsi_segs=; s_vi=[CS]v1|267401DC851D2580-4000012F803267BB[CE]; OAX=rnneEkzoA7IACz4K; __utma=30057196.685584106.1290273703.1290273703.1290273703.1; __utmc=30057196; RMFD=011PJr8MO1021wJe; __utmb=30057196.3.9.1290273791381; opt=no-opt;

Response

HTTP/1.1 200 OK
Server: Sun-Java-System-Web-Server/7.0
Cache-Control: max-age=900
ETag: W/"981bff1f1c1b282d65b8c79b2c5ee1e7"
X-runtime: 120
Content-Type: text/html; charset=utf-8
Cache-Control: max-age=120, private
Proxy-agent: Sun-Java-System-Web-Server/7.0
Date: Sat, 20 Nov 2010 18:22:16 GMT
Content-Length: 26538
Connection: close
Set-Cookie: ad_description=%2Fabout%2Fcontact%2Findex; path=/

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN"
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xmlns:og="http://opengraphprotocol.org/sc
...[SNIP]...

5.4. http://www.bloomberg.com/about/pressroom/  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.bloomberg.com
Path:   /about/pressroom/

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /about/pressroom/ HTTP/1.1
Host: www.bloomberg.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmv=30057196.|3=opt=no-opt=1,; s_sess=%20s_ria%3Dflash%257CSilverlight%25204.0%3B%20s_campaign%3Dcof_2%3B%20s_cc%3Dtrue%3B%20ev1%3Dtv%253Ahome%3B%20s_sq%3D%3B; __utmz=30057196.1290273703.1.1.utmcsr=s0.2mdn.net|utmccn=(referral)|utmcmd=referral|utmcct=/1797755/Coffee_v1_300x250.swf; path_cookie=_news; BT=; oo_int_hit=1; oo_int_percent=0; rsi_segs=; s_vi=[CS]v1|267401DC851D2580-4000012F803267BB[CE]; OAX=rnneEkzoA7IACz4K; __utma=30057196.685584106.1290273703.1290273703.1290273703.1; __utmc=30057196; RMFD=011PJr8MO1021wJe; __utmb=30057196.3.9.1290273791381; opt=no-opt;

Response

HTTP/1.1 200 OK
Server: Sun-Java-System-Web-Server/7.0
Cache-Control: max-age=900
ETag: W/"7b6914d73401b82e0ca46bdaafaa324a"
X-runtime: 197
Content-Type: text/html; charset=utf-8
Cache-Control: max-age=120, private
Proxy-agent: Sun-Java-System-Web-Server/7.0
Date: Sat, 20 Nov 2010 18:22:17 GMT
Content-Length: 31525
Connection: close
Set-Cookie: ad_description=%2Fabout%2Fpressroom%2Findex; path=/

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN"
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xmlns:og="http://opengraphprotocol.org/sc
...[SNIP]...

5.5. http://www.bloomberg.com/apps/quote  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.bloomberg.com
Path:   /apps/quote

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /apps/quote?ticker=INDU:IND HTTP/1.1
Host: www.bloomberg.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmv=30057196.|3=opt=no-opt=1,; s_sess=%20s_ria%3Dflash%257CSilverlight%25204.0%3B%20s_campaign%3Dcof_2%3B%20s_cc%3Dtrue%3B%20ev1%3Dtv%253Ahome%3B%20s_sq%3D%3B; __utmz=30057196.1290273703.1.1.utmcsr=s0.2mdn.net|utmccn=(referral)|utmcmd=referral|utmcct=/1797755/Coffee_v1_300x250.swf; path_cookie=_news; BT=; oo_int_hit=1; oo_int_percent=0; rsi_segs=; s_vi=[CS]v1|267401DC851D2580-4000012F803267BB[CE]; OAX=rnneEkzoA7IACz4K; __utma=30057196.685584106.1290273703.1290273703.1290273703.1; __utmc=30057196; RMFD=011PJr8MO1021wJe; __utmb=30057196.3.9.1290273791381; opt=no-opt;

Response

HTTP/1.1 200 OK
Server: Sun-Java-System-Web-Server/7.0
Cache-Control: private,max-age=0
Content-Type: text/html
Date: Sat, 20 Nov 2010 18:22:05 GMT
Content-Length: 29463
Connection: close
Set-Cookie: bbquotehistory=INDU%3AIND%3B; Expires=Sun, 20-Nov-2011 18:22:05 GMT


<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml"">
<head xmlns:webvar="http://www.bloom
...[SNIP]...

5.6. http://www.bloomberg.com/apps/subscriber/webport  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.bloomberg.com
Path:   /apps/subscriber/webport

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /apps/subscriber/webport HTTP/1.1
Host: www.bloomberg.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmv=30057196.|3=opt=no-opt=1,; s_sess=%20s_ria%3Dflash%257CSilverlight%25204.0%3B%20s_campaign%3Dcof_2%3B%20s_cc%3Dtrue%3B%20ev1%3Dtv%253Ahome%3B%20s_sq%3D%3B; __utmz=30057196.1290273703.1.1.utmcsr=s0.2mdn.net|utmccn=(referral)|utmcmd=referral|utmcct=/1797755/Coffee_v1_300x250.swf; path_cookie=_news; BT=; oo_int_hit=1; oo_int_percent=0; rsi_segs=; s_vi=[CS]v1|267401DC851D2580-4000012F803267BB[CE]; OAX=rnneEkzoA7IACz4K; __utma=30057196.685584106.1290273703.1290273703.1290273703.1; __utmc=30057196; RMFD=011PJr8MO1021wJe; __utmb=30057196.3.9.1290273791381; opt=no-opt;

Response

HTTP/1.1 302 Moved Temporarily
Server: Sun-Java-System-Web-Server/7.0
Vary: Accept-Encoding
Cache-Control: private,max-age=0
Content-Type: text/html
Location: https://software.bloomberg.com/log-in/index.html
Date: Sat, 20 Nov 2010 18:22:03 GMT
Connection: close
Set-Cookie: BTOG=http://www.bloomberg.com/apps/subscriber/webport|; path=/; domain=.bloomberg.com; expires=Sat Nov 20 19:27:03 2010 GMT
Content-Length: 0


5.7. http://www.bloomberg.com/personalities/  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.bloomberg.com
Path:   /personalities/

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /personalities/ HTTP/1.1
Host: www.bloomberg.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmv=30057196.|3=opt=no-opt=1,; s_sess=%20s_ria%3Dflash%257CSilverlight%25204.0%3B%20s_campaign%3Dcof_2%3B%20s_cc%3Dtrue%3B%20ev1%3Dtv%253Ahome%3B%20s_sq%3D%3B; __utmz=30057196.1290273703.1.1.utmcsr=s0.2mdn.net|utmccn=(referral)|utmcmd=referral|utmcct=/1797755/Coffee_v1_300x250.swf; path_cookie=_news; BT=; oo_int_hit=1; oo_int_percent=0; rsi_segs=; s_vi=[CS]v1|267401DC851D2580-4000012F803267BB[CE]; OAX=rnneEkzoA7IACz4K; __utma=30057196.685584106.1290273703.1290273703.1290273703.1; __utmc=30057196; RMFD=011PJr8MO1021wJe; __utmb=30057196.3.9.1290273791381; opt=no-opt;

Response

HTTP/1.1 200 OK
Server: Sun-Java-System-Web-Server/7.0
Cache-Control: max-age=900
ETag: W/"a00dbcec512b9a43b114757df4e88c85"
X-runtime: 859
Content-Type: text/html; charset=utf-8
Cache-Control: max-age=120, private
Proxy-agent: Sun-Java-System-Web-Server/7.0
Date: Sat, 20 Nov 2010 18:22:17 GMT
Connection: close
Connection: Transfer-Encoding
Set-Cookie: ad_description=%2Ftvradio%2Ftv%2Fanchors; path=/
Content-Length: 67637

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN"
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xmlns:og="http://opengraphprotocol.org/sc
...[SNIP]...

5.8. http://www.bloomberg.com/podcasts/  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.bloomberg.com
Path:   /podcasts/

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /podcasts/ HTTP/1.1
Host: www.bloomberg.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmv=30057196.|3=opt=no-opt=1,; s_sess=%20s_ria%3Dflash%257CSilverlight%25204.0%3B%20s_campaign%3Dcof_2%3B%20s_cc%3Dtrue%3B%20ev1%3Dtv%253Ahome%3B%20s_sq%3D%3B; __utmz=30057196.1290273703.1.1.utmcsr=s0.2mdn.net|utmccn=(referral)|utmcmd=referral|utmcct=/1797755/Coffee_v1_300x250.swf; path_cookie=_news; BT=; oo_int_hit=1; oo_int_percent=0; rsi_segs=; s_vi=[CS]v1|267401DC851D2580-4000012F803267BB[CE]; OAX=rnneEkzoA7IACz4K; __utma=30057196.685584106.1290273703.1290273703.1290273703.1; __utmc=30057196; RMFD=011PJr8MO1021wJe; __utmb=30057196.3.9.1290273791381; opt=no-opt;

Response

HTTP/1.1 200 OK
Server: Sun-Java-System-Web-Server/7.0
Cache-Control: max-age=900
ETag: W/"59b9bff932866eca232254ea2df9cbb0"
X-runtime: 2806
Content-Type: text/html; charset=utf-8
Cache-Control: max-age=120, private
Proxy-agent: Sun-Java-System-Web-Server/7.0
Date: Sat, 20 Nov 2010 18:22:14 GMT
Connection: close
Connection: Transfer-Encoding
Set-Cookie: ad_description=%2Ftvradio%2Fpodcast; path=/
Content-Length: 34286

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN"
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xmlns:og="http://opengraphprotocol.org/sc
...[SNIP]...

5.9. http://www.bloomberg.com/professional/  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.bloomberg.com
Path:   /professional/

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /professional/ HTTP/1.1
Host: www.bloomberg.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmv=30057196.|3=opt=no-opt=1,; s_sess=%20s_ria%3Dflash%257CSilverlight%25204.0%3B%20s_campaign%3Dcof_2%3B%20s_cc%3Dtrue%3B%20ev1%3Dtv%253Ahome%3B%20s_sq%3D%3B; __utmz=30057196.1290273703.1.1.utmcsr=s0.2mdn.net|utmccn=(referral)|utmcmd=referral|utmcct=/1797755/Coffee_v1_300x250.swf; path_cookie=_news; BT=; oo_int_hit=1; oo_int_percent=0; rsi_segs=; s_vi=[CS]v1|267401DC851D2580-4000012F803267BB[CE]; OAX=rnneEkzoA7IACz4K; __utma=30057196.685584106.1290273703.1290273703.1290273703.1; __utmc=30057196; RMFD=011PJr8MO1021wJe; __utmb=30057196.3.9.1290273791381; opt=no-opt;

Response

HTTP/1.1 200 OK
Server: Sun-Java-System-Web-Server/7.0
Cache-Control: max-age=900
ETag: W/"14fb11c461656b0af28f94ba65f9f101"
X-runtime: 138
Content-Type: text/html; charset=utf-8
Cache-Control: max-age=120, private
Proxy-agent: Sun-Java-System-Web-Server/7.0
Date: Sat, 20 Nov 2010 18:22:12 GMT
Content-Length: 29367
Connection: close
Set-Cookie: ad_description=%2Fprofessional%2Findex; path=/

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN"
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xmlns:og="http://opengraphprotocol.org/sc
...[SNIP]...

5.10. http://www.bloomberg.com/solutions/  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.bloomberg.com
Path:   /solutions/

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /solutions/ HTTP/1.1
Host: www.bloomberg.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmv=30057196.|3=opt=no-opt=1,; s_sess=%20s_ria%3Dflash%257CSilverlight%25204.0%3B%20s_campaign%3Dcof_2%3B%20s_cc%3Dtrue%3B%20ev1%3Dtv%253Ahome%3B%20s_sq%3D%3B; __utmz=30057196.1290273703.1.1.utmcsr=s0.2mdn.net|utmccn=(referral)|utmcmd=referral|utmcct=/1797755/Coffee_v1_300x250.swf; path_cookie=_news; BT=; oo_int_hit=1; oo_int_percent=0; rsi_segs=; s_vi=[CS]v1|267401DC851D2580-4000012F803267BB[CE]; OAX=rnneEkzoA7IACz4K; __utma=30057196.685584106.1290273703.1290273703.1290273703.1; __utmc=30057196; RMFD=011PJr8MO1021wJe; __utmb=30057196.3.9.1290273791381; opt=no-opt;

Response

HTTP/1.1 200 OK
Server: Sun-Java-System-Web-Server/7.0
Cache-Control: max-age=900
ETag: W/"0e11e8a6533ea3abc07a700c157ccac5"
X-runtime: 770
Content-Type: text/html; charset=utf-8
Cache-Control: max-age=120, private
Proxy-agent: Sun-Java-System-Web-Server/7.0
Date: Sat, 20 Nov 2010 18:22:13 GMT
Connection: close
Connection: Transfer-Encoding
Set-Cookie: ad_description=%2Fsolutions%2Findex; path=/
Content-Length: 32944

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN"
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xmlns:og="http://opengraphprotocol.org/sc
...[SNIP]...

5.11. http://www.bloomberg.com/solutions/bloomberg_news/digital/  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.bloomberg.com
Path:   /solutions/bloomberg_news/digital/

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /solutions/bloomberg_news/digital/ HTTP/1.1
Host: www.bloomberg.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmv=30057196.|3=opt=no-opt=1,; s_sess=%20s_ria%3Dflash%257CSilverlight%25204.0%3B%20s_campaign%3Dcof_2%3B%20s_cc%3Dtrue%3B%20ev1%3Dtv%253Ahome%3B%20s_sq%3D%3B; __utmz=30057196.1290273703.1.1.utmcsr=s0.2mdn.net|utmccn=(referral)|utmcmd=referral|utmcct=/1797755/Coffee_v1_300x250.swf; path_cookie=_news; BT=; oo_int_hit=1; oo_int_percent=0; rsi_segs=; s_vi=[CS]v1|267401DC851D2580-4000012F803267BB[CE]; OAX=rnneEkzoA7IACz4K; __utma=30057196.685584106.1290273703.1290273703.1290273703.1; __utmc=30057196; RMFD=011PJr8MO1021wJe; __utmb=30057196.3.9.1290273791381; opt=no-opt;

Response

HTTP/1.1 200 OK
Server: Sun-Java-System-Web-Server/7.0
Cache-Control: max-age=900
ETag: W/"89769108124ee2026aa29ebd20fd69a2"
X-runtime: 115
Content-Type: text/html; charset=utf-8
Cache-Control: max-age=120, private
Proxy-agent: Sun-Java-System-Web-Server/7.0
Date: Sat, 20 Nov 2010 18:22:13 GMT
Content-Length: 30584
Connection: close
Set-Cookie: ad_description=%2Fsolutions%2Fbloomberg_news%2Fdigital; path=/

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN"
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xmlns:og="http://opengraphprotocol.org/sc
...[SNIP]...

5.12. http://www.bloomberg.com/solutions/bloomberg_news/television/  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.bloomberg.com
Path:   /solutions/bloomberg_news/television/

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /solutions/bloomberg_news/television/ HTTP/1.1
Host: www.bloomberg.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmv=30057196.|3=opt=no-opt=1,; s_sess=%20s_ria%3Dflash%257CSilverlight%25204.0%3B%20s_campaign%3Dcof_2%3B%20s_cc%3Dtrue%3B%20ev1%3Dtv%253Ahome%3B%20s_sq%3D%3B; __utmz=30057196.1290273703.1.1.utmcsr=s0.2mdn.net|utmccn=(referral)|utmcmd=referral|utmcct=/1797755/Coffee_v1_300x250.swf; path_cookie=_news; BT=; oo_int_hit=1; oo_int_percent=0; rsi_segs=; s_vi=[CS]v1|267401DC851D2580-4000012F803267BB[CE]; OAX=rnneEkzoA7IACz4K; __utma=30057196.685584106.1290273703.1290273703.1290273703.1; __utmc=30057196; RMFD=011PJr8MO1021wJe; __utmb=30057196.3.9.1290273791381; opt=no-opt;

Response

HTTP/1.1 200 OK
Server: Sun-Java-System-Web-Server/7.0
Cache-Control: max-age=900
ETag: W/"bd48094630e86cad6c168dbabc4cc7ef"
X-runtime: 134
Content-Type: text/html; charset=utf-8
Cache-Control: max-age=120, private
Proxy-agent: Sun-Java-System-Web-Server/7.0
Date: Sat, 20 Nov 2010 18:22:13 GMT
Content-Length: 28891
Connection: close
Set-Cookie: ad_description=%2Fsolutions%2Fbloomberg_news%2Ftelevision; path=/

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN"
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xmlns:og="http://opengraphprotocol.org/sc
...[SNIP]...

6. Email addresses disclosed  previous
There are 69 instances of this issue:

Issue background

The presence of email addresses within application responses does not necessarily constitute a security vulnerability. Email addresses may appear intentionally within contact information, and many applications (such as web mail) include arbitrary third-party email addresses within their core content.

However, email addresses of developers and other individuals (whether appearing on-screen or hidden within page source) may disclose information that is useful to an attacker; for example, they may represent usernames that can be used at the application's login, and they may be used in social engineering attacks against the organisation's personnel. Unnecessary or excessive disclosure of email addresses may also lead to an increase in the volume of spam email received.

Issue remediation

You should review the email addresses being disclosed by the application, and consider removing any that are unnecessary, or replacing personal addresses with anonymous mailbox addresses (such as helpdesk@example.com).


6.1. http://www.bloomberg.com/about/contact/  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.bloomberg.com
Path:   /about/contact/

Issue detail

The following email address was disclosed in the response:

Request

GET /about/contact/ HTTP/1.1
Host: www.bloomberg.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmv=30057196.|3=opt=no-opt=1,; s_sess=%20s_ria%3Dflash%257CSilverlight%25204.0%3B%20s_campaign%3Dcof_2%3B%20s_cc%3Dtrue%3B%20ev1%3Dtv%253Ahome%3B%20s_sq%3D%3B; __utmz=30057196.1290273703.1.1.utmcsr=s0.2mdn.net|utmccn=(referral)|utmcmd=referral|utmcct=/1797755/Coffee_v1_300x250.swf; path_cookie=_news; BT=; oo_int_hit=1; oo_int_percent=0; rsi_segs=; s_vi=[CS]v1|267401DC851D2580-4000012F803267BB[CE]; OAX=rnneEkzoA7IACz4K; __utma=30057196.685584106.1290273703.1290273703.1290273703.1; __utmc=30057196; RMFD=011PJr8MO1021wJe; __utmb=30057196.3.9.1290273791381; opt=no-opt;

Response

HTTP/1.1 200 OK
Server: Sun-Java-System-Web-Server/7.0
Cache-Control: max-age=900
ETag: W/"981bff1f1c1b282d65b8c79b2c5ee1e7"
X-runtime: 120
Content-Type: text/html; charset=utf-8
Cache-Control: max-age=120, private
Proxy-agent: Sun-Java-System-Web-Server/7.0
Date: Sat, 20 Nov 2010 18:22:16 GMT
Content-Length: 26538
Connection: close
Set-Cookie: ad_description=%2Fabout%2Fcontact%2Findex; path=/

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN"
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xmlns:og="http://opengraphprotocol.org/sc
...[SNIP]...
<a href="mailto:release@bloomberg.net">
...[SNIP]...

6.2. http://www.bloomberg.com/about/pressroom/  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.bloomberg.com
Path:   /about/pressroom/

Issue detail

The following email addresses were disclosed in the response:

Request

GET /about/pressroom/ HTTP/1.1
Host: www.bloomberg.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmv=30057196.|3=opt=no-opt=1,; s_sess=%20s_ria%3Dflash%257CSilverlight%25204.0%3B%20s_campaign%3Dcof_2%3B%20s_cc%3Dtrue%3B%20ev1%3Dtv%253Ahome%3B%20s_sq%3D%3B; __utmz=30057196.1290273703.1.1.utmcsr=s0.2mdn.net|utmccn=(referral)|utmcmd=referral|utmcct=/1797755/Coffee_v1_300x250.swf; path_cookie=_news; BT=; oo_int_hit=1; oo_int_percent=0; rsi_segs=; s_vi=[CS]v1|267401DC851D2580-4000012F803267BB[CE]; OAX=rnneEkzoA7IACz4K; __utma=30057196.685584106.1290273703.1290273703.1290273703.1; __utmc=30057196; RMFD=011PJr8MO1021wJe; __utmb=30057196.3.9.1290273791381; opt=no-opt;

Response

HTTP/1.1 200 OK
Server: Sun-Java-System-Web-Server/7.0
Cache-Control: max-age=900
ETag: W/"7b6914d73401b82e0ca46bdaafaa324a"
X-runtime: 197
Content-Type: text/html; charset=utf-8
Cache-Control: max-age=120, private
Proxy-agent: Sun-Java-System-Web-Server/7.0
Date: Sat, 20 Nov 2010 18:22:17 GMT
Content-Length: 31525
Connection: close
Set-Cookie: ad_description=%2Fabout%2Fpressroom%2Findex; path=/

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN"
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xmlns:og="http://opengraphprotocol.org/sc
...[SNIP]...
<a href="mailto:hcarpenter@bloomberg.net">
...[SNIP]...
<a href="mailto:jgoodkind@bloomberg.net">
...[SNIP]...
<a href="mailto:angelamartin@bloomberg.net">
...[SNIP]...
<a href="mailto:sfeinberg2@bloomberg.net">
...[SNIP]...
<a href="mailto:ttrippet@bloomberg.net">
...[SNIP]...
<a href="mailto:sfeinberg2@bloomberg.net">
...[SNIP]...
<a href="mailto:pamsnook@bloomberg.net">
...[SNIP]...
<a href="mailto:salvarez13@bloomberg.net">
...[SNIP]...
<a href="mailto:jbaustin@bloomberg.net">
...[SNIP]...
<a href="mailto:lmeller@bloomberg.net">
...[SNIP]...
<a href="mailto:angelamartin@bloomberg.net">
...[SNIP]...

6.3. http://www.bloomberg.com/help.html  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.bloomberg.com
Path:   /help.html

Issue detail

The following email addresses were disclosed in the response:

Request

GET /help.html HTTP/1.1
Host: www.bloomberg.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmv=30057196.|3=opt=no-opt=1,; s_sess=%20s_ria%3Dflash%257CSilverlight%25204.0%3B%20s_campaign%3Dcof_2%3B%20s_cc%3Dtrue%3B%20ev1%3Dtv%253Ahome%3B%20s_sq%3D%3B; __utmz=30057196.1290273703.1.1.utmcsr=s0.2mdn.net|utmccn=(referral)|utmcmd=referral|utmcct=/1797755/Coffee_v1_300x250.swf; path_cookie=_news; BT=; oo_int_hit=1; oo_int_percent=0; rsi_segs=; s_vi=[CS]v1|267401DC851D2580-4000012F803267BB[CE]; OAX=rnneEkzoA7IACz4K; __utma=30057196.685584106.1290273703.1290273703.1290273703.1; __utmc=30057196; RMFD=011PJr8MO1021wJe; __utmb=30057196.3.9.1290273791381; opt=no-opt;

Response

HTTP/1.1 200 OK
Server: Sun-Java-System-Web-Server/7.0
Content-Type: text/html
Last-Modified: Fri, 19 Nov 2010 11:00:01 GMT
ETag: W/"cef-4ce658b1"
Cache-Control: max-age=56
Expires: Sat, 20 Nov 2010 18:23:16 GMT
Date: Sat, 20 Nov 2010 18:22:20 GMT
Content-Length: 10718
Connection: close

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml"><head xmlns:webvar="http://www.bloomberg.com/we
...[SNIP]...
<a onclick="window.open(this.href); return false;" href="mailto:release@bloomberg.net">release@bloomberg.net</a>
...[SNIP]...
<a onclick="window.open(this.href); return false;" href="mailto:newsalert@bloomberg.net">newsalert@bloomberg.net</a>
...[SNIP]...

6.4. http://www.bloomberg.com/markets-magazine/  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.bloomberg.com
Path:   /markets-magazine/

Issue detail

The following email addresses were disclosed in the response:

Request

GET /markets-magazine/ HTTP/1.1
Host: www.bloomberg.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmv=30057196.|3=opt=no-opt=1,; s_sess=%20s_ria%3Dflash%257CSilverlight%25204.0%3B%20s_campaign%3Dcof_2%3B%20s_cc%3Dtrue%3B%20ev1%3Dtv%253Ahome%3B%20s_sq%3D%3B; __utmz=30057196.1290273703.1.1.utmcsr=s0.2mdn.net|utmccn=(referral)|utmcmd=referral|utmcct=/1797755/Coffee_v1_300x250.swf; path_cookie=_news; BT=; oo_int_hit=1; oo_int_percent=0; rsi_segs=; s_vi=[CS]v1|267401DC851D2580-4000012F803267BB[CE]; OAX=rnneEkzoA7IACz4K; __utma=30057196.685584106.1290273703.1290273703.1290273703.1; __utmc=30057196; RMFD=011PJr8MO1021wJe; __utmb=30057196.3.9.1290273791381; opt=no-opt;

Response

HTTP/1.1 200 OK
Server: Sun-Java-System-Web-Server/7.0
ETag: W/"bb9b1d09f3695ea03ec3ea42aee083d0"
X-runtime: 14
Content-Type: text/html; charset=utf-8
Proxy-agent: Sun-Java-System-Web-Server/7.0
Cache-Control: private, max-age=16
Date: Sat, 20 Nov 2010 18:21:47 GMT
Connection: close
Connection: Transfer-Encoding
Content-Length: 37956

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN"
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xmlns:og="http://opengraphprotocol.org/sc
...[SNIP]...
<a href="mailto:bloombergmag@bloomberg.net">Write to: bloombergmag@bloomberg.net</a>
...[SNIP]...
<a href="mailto:BloombergReprints@theYGSgroup.com">BloombergReprints@theYGSgroup.com</a>
...[SNIP]...

6.5. http://www.bloomberg.com/news/2010-11-07/india-s-deadly-diabetes-scourge-cuts-down-millions-rising-to-middle-class.html  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.bloomberg.com
Path:   /news/2010-11-07/india-s-deadly-diabetes-scourge-cuts-down-millions-rising-to-middle-class.html

Issue detail

The following email addresses were disclosed in the response:

Request

GET /news/2010-11-07/india-s-deadly-diabetes-scourge-cuts-down-millions-rising-to-middle-class.html HTTP/1.1
Host: www.bloomberg.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmv=30057196.|3=opt=no-opt=1,; s_sess=%20s_ria%3Dflash%257CSilverlight%25204.0%3B%20s_campaign%3Dcof_2%3B%20s_cc%3Dtrue%3B%20ev1%3Dtv%253Ahome%3B%20s_sq%3D%3B; __utmz=30057196.1290273703.1.1.utmcsr=s0.2mdn.net|utmccn=(referral)|utmcmd=referral|utmcct=/1797755/Coffee_v1_300x250.swf; path_cookie=_news; BT=; oo_int_hit=1; oo_int_percent=0; rsi_segs=; s_vi=[CS]v1|267401DC851D2580-4000012F803267BB[CE]; OAX=rnneEkzoA7IACz4K; __utma=30057196.685584106.1290273703.1290273703.1290273703.1; __utmc=30057196; RMFD=011PJr8MO1021wJe; __utmb=30057196.3.9.1290273791381; opt=no-opt;

Response

HTTP/1.1 200 OK
Server: Sun-Java-System-Web-Server/7.0
ETag: W/"fa2ce831b9ab51a7e044bf861a8246fe"
X-runtime: 635
Content-Type: text/html; charset=utf-8
Proxy-agent: Sun-Java-System-Web-Server/7.0
Cache-Control: private, max-age=417
Date: Sat, 20 Nov 2010 18:21:37 GMT
Connection: close
Connection: Transfer-Encoding
Content-Length: 79808

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN"
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xmlns:og="http://opengraphprotocol.org/sc
...[SNIP]...
<a href="mailto:j.gale@bloomberg.net" title="Send E-mail">j.gale@bloomberg.net</a>
...[SNIP]...
<a href="mailto:mserrill@bloomberg.net" title="Send E-mail">mserrill@bloomberg.net</a>
...[SNIP]...

6.6. http://www.bloomberg.com/news/2010-11-09/fidelity-s-bolton-defies-china-bears-with-27-new-fund-return.html  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.bloomberg.com
Path:   /news/2010-11-09/fidelity-s-bolton-defies-china-bears-with-27-new-fund-return.html

Issue detail

The following email addresses were disclosed in the response:

Request

GET /news/2010-11-09/fidelity-s-bolton-defies-china-bears-with-27-new-fund-return.html HTTP/1.1
Host: www.bloomberg.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmv=30057196.|3=opt=no-opt=1,; s_sess=%20s_ria%3Dflash%257CSilverlight%25204.0%3B%20s_campaign%3Dcof_2%3B%20s_cc%3Dtrue%3B%20ev1%3Dtv%253Ahome%3B%20s_sq%3D%3B; __utmz=30057196.1290273703.1.1.utmcsr=s0.2mdn.net|utmccn=(referral)|utmcmd=referral|utmcct=/1797755/Coffee_v1_300x250.swf; path_cookie=_news; BT=; oo_int_hit=1; oo_int_percent=0; rsi_segs=; s_vi=[CS]v1|267401DC851D2580-4000012F803267BB[CE]; OAX=rnneEkzoA7IACz4K; __utma=30057196.685584106.1290273703.1290273703.1290273703.1; __utmc=30057196; RMFD=011PJr8MO1021wJe; __utmb=30057196.3.9.1290273791381; opt=no-opt;

Response

HTTP/1.1 200 OK
Server: Sun-Java-System-Web-Server/7.0
ETag: W/"3f4cb47fe0bf18350fc4ad8a4c20758a"
X-runtime: 1596
Content-Type: text/html; charset=utf-8
Proxy-agent: Sun-Java-System-Web-Server/7.0
Cache-Control: private, max-age=17
Date: Sat, 20 Nov 2010 18:21:35 GMT
Connection: close
Connection: Transfer-Encoding
Content-Length: 70362

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN"
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xmlns:og="http://opengraphprotocol.org/sc
...[SNIP]...
<a href="mailto:wmellor@bloomberg.net" title="Send E-mail">wmellor@bloomberg.net</a>
...[SNIP]...
<a href="mailto:mserrill@bloomberg.net" title="Send E-mail">mserrill@bloomberg.net</a>
...[SNIP]...

6.7. http://www.bloomberg.com/news/2010-11-11/merrill-banker-indicted-for-illegal-transfers-of-funds-says-he-s-scapegoat.html  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.bloomberg.com
Path:   /news/2010-11-11/merrill-banker-indicted-for-illegal-transfers-of-funds-says-he-s-scapegoat.html

Issue detail

The following email addresses were disclosed in the response:

Request

GET /news/2010-11-11/merrill-banker-indicted-for-illegal-transfers-of-funds-says-he-s-scapegoat.html HTTP/1.1
Host: www.bloomberg.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmv=30057196.|3=opt=no-opt=1,; s_sess=%20s_ria%3Dflash%257CSilverlight%25204.0%3B%20s_campaign%3Dcof_2%3B%20s_cc%3Dtrue%3B%20ev1%3Dtv%253Ahome%3B%20s_sq%3D%3B; __utmz=30057196.1290273703.1.1.utmcsr=s0.2mdn.net|utmccn=(referral)|utmcmd=referral|utmcct=/1797755/Coffee_v1_300x250.swf; path_cookie=_news; BT=; oo_int_hit=1; oo_int_percent=0; rsi_segs=; s_vi=[CS]v1|267401DC851D2580-4000012F803267BB[CE]; OAX=rnneEkzoA7IACz4K; __utma=30057196.685584106.1290273703.1290273703.1290273703.1; __utmc=30057196; RMFD=011PJr8MO1021wJe; __utmb=30057196.3.9.1290273791381; opt=no-opt;

Response

HTTP/1.1 200 OK
Server: Sun-Java-System-Web-Server/7.0
ETag: W/"b4afe643bced6715ab9bd20fb661ff6a"
X-runtime: 1509
Content-Type: text/html; charset=utf-8
Proxy-agent: Sun-Java-System-Web-Server/7.0
Cache-Control: private, max-age=36
Date: Sat, 20 Nov 2010 18:21:35 GMT
Connection: close
Connection: Transfer-Encoding
Content-Length: 74143

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN"
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xmlns:og="http://opengraphprotocol.org/sc
...[SNIP]...
<a href="mailto:aragir@bloomberg.net" title="Send E-mail">aragir@bloomberg.net</a>
...[SNIP]...
<a href="mailto:Mssmith@bloomberg.net" title="Send E-mail">Mssmith@bloomberg.net</a>
...[SNIP]...
<a href="mailto:jneumann2@bloomberg.net" title="Send E-mail">jneumann2@bloomberg.net</a>
...[SNIP]...

6.8. http://www.bloomberg.com/news/2010-11-12/specialty-drugmaker-sinobiopharma-takes-on-big-pharma-in-china.html  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.bloomberg.com
Path:   /news/2010-11-12/specialty-drugmaker-sinobiopharma-takes-on-big-pharma-in-china.html

Issue detail

The following email addresses were disclosed in the response:

Request

GET /news/2010-11-12/specialty-drugmaker-sinobiopharma-takes-on-big-pharma-in-china.html HTTP/1.1
Host: www.bloomberg.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmv=30057196.|3=opt=no-opt=1,; s_sess=%20s_ria%3Dflash%257CSilverlight%25204.0%3B%20s_campaign%3Dcof_2%3B%20s_cc%3Dtrue%3B%20ev1%3Dtv%253Ahome%3B%20s_sq%3D%3B; __utmz=30057196.1290273703.1.1.utmcsr=s0.2mdn.net|utmccn=(referral)|utmcmd=referral|utmcct=/1797755/Coffee_v1_300x250.swf; path_cookie=_news; BT=; oo_int_hit=1; oo_int_percent=0; rsi_segs=; s_vi=[CS]v1|267401DC851D2580-4000012F803267BB[CE]; OAX=rnneEkzoA7IACz4K; __utma=30057196.685584106.1290273703.1290273703.1290273703.1; __utmc=30057196; RMFD=011PJr8MO1021wJe; __utmb=30057196.3.9.1290273791381; opt=no-opt;

Response

HTTP/1.1 200 OK
Server: Sun-Java-System-Web-Server/7.0
ETag: W/"5acaa40bea37db8123777ca14480b9cc"
X-runtime: 609
Content-Type: text/html; charset=utf-8
Proxy-agent: Sun-Java-System-Web-Server/7.0
Cache-Control: private, max-age=55
Date: Sat, 20 Nov 2010 18:21:37 GMT
Connection: close
Connection: Transfer-Encoding
Content-Length: 56780

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN"
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xmlns:og="http://opengraphprotocol.org/sc
...[SNIP]...
<span>mm.shank@gmail.com</span>
...[SNIP]...
<a href="mailto:nleiber@bloomberg.net" title="Send E-mail">nleiber@bloomberg.net</a>
...[SNIP]...

6.9. http://www.bloomberg.com/news/2010-11-16/senate-s-durbin-not-very-optimistic-bush-era-tax-cuts-will-be-extended.html  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.bloomberg.com
Path:   /news/2010-11-16/senate-s-durbin-not-very-optimistic-bush-era-tax-cuts-will-be-extended.html

Issue detail

The following email addresses were disclosed in the response:

Request

GET /news/2010-11-16/senate-s-durbin-not-very-optimistic-bush-era-tax-cuts-will-be-extended.html HTTP/1.1
Host: www.bloomberg.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmv=30057196.|3=opt=no-opt=1,; s_sess=%20s_ria%3Dflash%257CSilverlight%25204.0%3B%20s_campaign%3Dcof_2%3B%20s_cc%3Dtrue%3B%20ev1%3Dtv%253Ahome%3B%20s_sq%3D%3B; __utmz=30057196.1290273703.1.1.utmcsr=s0.2mdn.net|utmccn=(referral)|utmcmd=referral|utmcct=/1797755/Coffee_v1_300x250.swf; path_cookie=_news; BT=; oo_int_hit=1; oo_int_percent=0; rsi_segs=; s_vi=[CS]v1|267401DC851D2580-4000012F803267BB[CE]; OAX=rnneEkzoA7IACz4K; __utma=30057196.685584106.1290273703.1290273703.1290273703.1; __utmc=30057196; RMFD=011PJr8MO1021wJe; __utmb=30057196.3.9.1290273791381; opt=no-opt;

Response

HTTP/1.1 200 OK
Server: Sun-Java-System-Web-Server/7.0
ETag: W/"4cd9d2193a72f4377326e028a35bff15"
X-runtime: 617
Content-Type: text/html; charset=utf-8
Proxy-agent: Sun-Java-System-Web-Server/7.0
Cache-Control: private, max-age=1
Date: Sat, 20 Nov 2010 18:21:34 GMT
Connection: close
Connection: Transfer-Encoding
Content-Length: 59345

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN"
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xmlns:og="http://opengraphprotocol.org/sc
...[SNIP]...
<a href="mailto:rdonmoyer@bloomberg.net" title="Send E-mail">rdonmoyer@bloomberg.net</a>
...[SNIP]...
<a href="mailto:rrubin12@bloomberg.net" title="Send E-mail">rrubin12@bloomberg.net</a>
...[SNIP]...
<a href="mailto:msilva34@bloomberg.net" title="Send E-mail">msilva34@bloomberg.net</a>
...[SNIP]...

6.10. http://www.bloomberg.com/news/2010-11-17/home-ownership-gets-harder-for-americans-as-lenders-restrict-fha-mortgages.html  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.bloomberg.com
Path:   /news/2010-11-17/home-ownership-gets-harder-for-americans-as-lenders-restrict-fha-mortgages.html

Issue detail

The following email addresses were disclosed in the response:

Request

GET /news/2010-11-17/home-ownership-gets-harder-for-americans-as-lenders-restrict-fha-mortgages.html HTTP/1.1
Host: www.bloomberg.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmv=30057196.|3=opt=no-opt=1,; s_sess=%20s_ria%3Dflash%257CSilverlight%25204.0%3B%20s_campaign%3Dcof_2%3B%20s_cc%3Dtrue%3B%20ev1%3Dtv%253Ahome%3B%20s_sq%3D%3B; __utmz=30057196.1290273703.1.1.utmcsr=s0.2mdn.net|utmccn=(referral)|utmcmd=referral|utmcct=/1797755/Coffee_v1_300x250.swf; path_cookie=_news; BT=; oo_int_hit=1; oo_int_percent=0; rsi_segs=; s_vi=[CS]v1|267401DC851D2580-4000012F803267BB[CE]; OAX=rnneEkzoA7IACz4K; __utma=30057196.685584106.1290273703.1290273703.1290273703.1; __utmc=30057196; RMFD=011PJr8MO1021wJe; __utmb=30057196.3.9.1290273791381; opt=no-opt;

Response

HTTP/1.1 200 OK
Server: Sun-Java-System-Web-Server/7.0
ETag: W/"7beefbafe7ab7c20331e0a4e72d73fd7"
X-runtime: 21
Content-Type: text/html; charset=utf-8
Proxy-agent: Sun-Java-System-Web-Server/7.0
Cache-Control: private, max-age=16
Date: Sat, 20 Nov 2010 18:21:31 GMT
Connection: close
Connection: Transfer-Encoding
Content-Length: 63732

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN"
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xmlns:og="http://opengraphprotocol.org/sc
...[SNIP]...
<a href="mailto:jshenn@bloomberg.net" title="Send E-mail">jshenn@bloomberg.net</a>
...[SNIP]...
<a href="mailto:johngitt@bloomberg.net" title="Send E-mail">johngitt@bloomberg.net</a>
...[SNIP]...
<a href="mailto:agoldstein5@bloomberg.net" title="Send E-mail">agoldstein5@bloomberg.net</a>
...[SNIP]...
<a href="mailto:kwetzel@bloomberg.net" title="Send E-mail">kwetzel@bloomberg.net</a>
...[SNIP]...

6.11. http://www.bloomberg.com/news/2010-11-17/merck-drug-improves-cholesterol-without-safety-risk-of-pfizer-s-product.html  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.bloomberg.com
Path:   /news/2010-11-17/merck-drug-improves-cholesterol-without-safety-risk-of-pfizer-s-product.html

Issue detail

The following email addresses were disclosed in the response:

Request

GET /news/2010-11-17/merck-drug-improves-cholesterol-without-safety-risk-of-pfizer-s-product.html HTTP/1.1
Host: www.bloomberg.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmv=30057196.|3=opt=no-opt=1,; s_sess=%20s_ria%3Dflash%257CSilverlight%25204.0%3B%20s_campaign%3Dcof_2%3B%20s_cc%3Dtrue%3B%20ev1%3Dtv%253Ahome%3B%20s_sq%3D%3B; __utmz=30057196.1290273703.1.1.utmcsr=s0.2mdn.net|utmccn=(referral)|utmcmd=referral|utmcct=/1797755/Coffee_v1_300x250.swf; path_cookie=_news; BT=; oo_int_hit=1; oo_int_percent=0; rsi_segs=; s_vi=[CS]v1|267401DC851D2580-4000012F803267BB[CE]; OAX=rnneEkzoA7IACz4K; __utma=30057196.685584106.1290273703.1290273703.1290273703.1; __utmc=30057196; RMFD=011PJr8MO1021wJe; __utmb=30057196.3.9.1290273791381; opt=no-opt;

Response

HTTP/1.1 200 OK
Server: Sun-Java-System-Web-Server/7.0
ETag: W/"a8b7f0443b3b31a27d860148b0c46032"
X-runtime: 27
Content-Type: text/html; charset=utf-8
Proxy-agent: Sun-Java-System-Web-Server/7.0
Cache-Control: private, max-age=2
Date: Sat, 20 Nov 2010 18:21:32 GMT
Connection: close
Connection: Transfer-Encoding
Content-Length: 53718

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN"
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xmlns:og="http://opengraphprotocol.org/sc
...[SNIP]...
<a href="mailto:mcortez@bloomberg.net" title="Send E-mail">mcortez@bloomberg.net</a>
...[SNIP]...
<a href="mailto:rgale5@bloomberg.net" title="Send E-mail">rgale5@bloomberg.net</a>
...[SNIP]...

6.12. http://www.bloomberg.com/news/2010-11-17/panasonic-to-boost-hiring-at-overseas-operations-next-year.html  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.bloomberg.com
Path:   /news/2010-11-17/panasonic-to-boost-hiring-at-overseas-operations-next-year.html

Issue detail

The following email addresses were disclosed in the response:

Request

GET /news/2010-11-17/panasonic-to-boost-hiring-at-overseas-operations-next-year.html HTTP/1.1
Host: www.bloomberg.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmv=30057196.|3=opt=no-opt=1,; s_sess=%20s_ria%3Dflash%257CSilverlight%25204.0%3B%20s_campaign%3Dcof_2%3B%20s_cc%3Dtrue%3B%20ev1%3Dtv%253Ahome%3B%20s_sq%3D%3B; __utmz=30057196.1290273703.1.1.utmcsr=s0.2mdn.net|utmccn=(referral)|utmcmd=referral|utmcct=/1797755/Coffee_v1_300x250.swf; path_cookie=_news; BT=; oo_int_hit=1; oo_int_percent=0; rsi_segs=; s_vi=[CS]v1|267401DC851D2580-4000012F803267BB[CE]; OAX=rnneEkzoA7IACz4K; __utma=30057196.685584106.1290273703.1290273703.1290273703.1; __utmc=30057196; RMFD=011PJr8MO1021wJe; __utmb=30057196.3.9.1290273791381; opt=no-opt;

Response

HTTP/1.1 200 OK
Server: Sun-Java-System-Web-Server/7.0
ETag: W/"57588a17cc713c75e1cd76895bf5bbf3"
X-runtime: 431
Content-Type: text/html; charset=utf-8
Proxy-agent: Sun-Java-System-Web-Server/7.0
Cache-Control: private, max-age=57
Date: Sat, 20 Nov 2010 18:21:33 GMT
Connection: close
Connection: Transfer-Encoding
Content-Length: 43895

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN"
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xmlns:og="http://opengraphprotocol.org/sc
...[SNIP]...
<a href="mailto:myasu@bloomberg.net" title="Send E-mail">myasu@bloomberg.net</a>
...[SNIP]...
<a href="mailto:ycho2@bloomberg.net" title="Send E-mail">ycho2@bloomberg.net</a>
...[SNIP]...

6.13. http://www.bloomberg.com/news/2010-11-18/clinton-to-offer-blueprint-for-more-staff-conflict-prevention.html  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.bloomberg.com
Path:   /news/2010-11-18/clinton-to-offer-blueprint-for-more-staff-conflict-prevention.html

Issue detail

The following email addresses were disclosed in the response:

Request

GET /news/2010-11-18/clinton-to-offer-blueprint-for-more-staff-conflict-prevention.html HTTP/1.1
Host: www.bloomberg.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmv=30057196.|3=opt=no-opt=1,; s_sess=%20s_ria%3Dflash%257CSilverlight%25204.0%3B%20s_campaign%3Dcof_2%3B%20s_cc%3Dtrue%3B%20ev1%3Dtv%253Ahome%3B%20s_sq%3D%3B; __utmz=30057196.1290273703.1.1.utmcsr=s0.2mdn.net|utmccn=(referral)|utmcmd=referral|utmcct=/1797755/Coffee_v1_300x250.swf; path_cookie=_news; BT=; oo_int_hit=1; oo_int_percent=0; rsi_segs=; s_vi=[CS]v1|267401DC851D2580-4000012F803267BB[CE]; OAX=rnneEkzoA7IACz4K; __utma=30057196.685584106.1290273703.1290273703.1290273703.1; __utmc=30057196; RMFD=011PJr8MO1021wJe; __utmb=30057196.3.9.1290273791381; opt=no-opt;

Response

HTTP/1.1 200 OK
Server: Sun-Java-System-Web-Server/7.0
ETag: W/"c6190003f57ab28966e9b046bbae5547"
X-runtime: 1456
Content-Type: text/html; charset=utf-8
Proxy-agent: Sun-Java-System-Web-Server/7.0
Cache-Control: private, max-age=19
Date: Sat, 20 Nov 2010 18:21:24 GMT
Connection: close
Connection: Transfer-Encoding
Content-Length: 50486

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN"
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xmlns:og="http://opengraphprotocol.org/sc
...[SNIP]...
<a href="mailto:ngaouette@bloomberg.net" title="Send E-mail">ngaouette@bloomberg.net</a>
...[SNIP]...
<a href="mailto:msilva34@bloomberg.net" title="Send E-mail">msilva34@bloomberg.net</a>
...[SNIP]...

6.14. http://www.bloomberg.com/news/2010-11-18/fidelity-s-junk-bond-king-notkin-prefers-cheap-stocks-as-debt-rally-dies.html  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.bloomberg.com
Path:   /news/2010-11-18/fidelity-s-junk-bond-king-notkin-prefers-cheap-stocks-as-debt-rally-dies.html

Issue detail

The following email addresses were disclosed in the response:

Request

GET /news/2010-11-18/fidelity-s-junk-bond-king-notkin-prefers-cheap-stocks-as-debt-rally-dies.html HTTP/1.1
Host: www.bloomberg.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmv=30057196.|3=opt=no-opt=1,; s_sess=%20s_ria%3Dflash%257CSilverlight%25204.0%3B%20s_campaign%3Dcof_2%3B%20s_cc%3Dtrue%3B%20ev1%3Dtv%253Ahome%3B%20s_sq%3D%3B; __utmz=30057196.1290273703.1.1.utmcsr=s0.2mdn.net|utmccn=(referral)|utmcmd=referral|utmcct=/1797755/Coffee_v1_300x250.swf; path_cookie=_news; BT=; oo_int_hit=1; oo_int_percent=0; rsi_segs=; s_vi=[CS]v1|267401DC851D2580-4000012F803267BB[CE]; OAX=rnneEkzoA7IACz4K; __utma=30057196.685584106.1290273703.1290273703.1290273703.1; __utmc=30057196; RMFD=011PJr8MO1021wJe; __utmb=30057196.3.9.1290273791381; opt=no-opt;

Response

HTTP/1.1 200 OK
Server: Sun-Java-System-Web-Server/7.0
ETag: W/"ed78029d6389317482895c309ea39ec5"
X-runtime: 546
Content-Type: text/html; charset=utf-8
Proxy-agent: Sun-Java-System-Web-Server/7.0
Cache-Control: private, max-age=19
Date: Sat, 20 Nov 2010 18:21:25 GMT
Connection: close
Connection: Transfer-Encoding
Content-Length: 58128

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN"
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xmlns:og="http://opengraphprotocol.org/sc
...[SNIP]...
<a href="mailto:cstein4@bloomberg.net" title="Send E-mail">cstein4@bloomberg.net</a>
...[SNIP]...
<a href="mailto:cbaumgaertel@bloomberg.net" title="Send E-mail">cbaumgaertel@bloomberg.net</a>
...[SNIP]...

6.15. http://www.bloomberg.com/news/2010-11-18/mark-to-make-believe-perfumes-rotten-loans-commentary-by-jonathan-weil.html  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.bloomberg.com
Path:   /news/2010-11-18/mark-to-make-believe-perfumes-rotten-loans-commentary-by-jonathan-weil.html

Issue detail

The following email addresses were disclosed in the response:

Request

GET /news/2010-11-18/mark-to-make-believe-perfumes-rotten-loans-commentary-by-jonathan-weil.html HTTP/1.1
Host: www.bloomberg.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmv=30057196.|3=opt=no-opt=1,; s_sess=%20s_ria%3Dflash%257CSilverlight%25204.0%3B%20s_campaign%3Dcof_2%3B%20s_cc%3Dtrue%3B%20ev1%3Dtv%253Ahome%3B%20s_sq%3D%3B; __utmz=30057196.1290273703.1.1.utmcsr=s0.2mdn.net|utmccn=(referral)|utmcmd=referral|utmcct=/1797755/Coffee_v1_300x250.swf; path_cookie=_news; BT=; oo_int_hit=1; oo_int_percent=0; rsi_segs=; s_vi=[CS]v1|267401DC851D2580-4000012F803267BB[CE]; OAX=rnneEkzoA7IACz4K; __utma=30057196.685584106.1290273703.1290273703.1290273703.1; __utmc=30057196; RMFD=011PJr8MO1021wJe; __utmb=30057196.3.9.1290273791381; opt=no-opt;

Response

HTTP/1.1 200 OK
Server: Sun-Java-System-Web-Server/7.0
ETag: W/"b34501be1ba785dcbda069b5c784075f"
X-runtime: 1461
Content-Type: text/html; charset=utf-8
Proxy-agent: Sun-Java-System-Web-Server/7.0
Cache-Control: private, max-age=27
Date: Sat, 20 Nov 2010 18:21:24 GMT
Connection: close
Connection: Transfer-Encoding
Content-Length: 55361

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN"
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xmlns:og="http://opengraphprotocol.org/sc
...[SNIP]...
<a href="mailto:jweil6@bloomberg.net" title="Send E-mail">jweil6@bloomberg.net</a>
...[SNIP]...
<a href="mailto:jgreiff@bloomberg.net" title="Send E-mail">jgreiff@bloomberg.net</a>
...[SNIP]...

6.16. http://www.bloomberg.com/news/2010-11-18/only-apple-haters-can-love-samsung-galaxy-tab-rich-jaroslovsky.html  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.bloomberg.com
Path:   /news/2010-11-18/only-apple-haters-can-love-samsung-galaxy-tab-rich-jaroslovsky.html

Issue detail

The following email addresses were disclosed in the response:

Request

GET /news/2010-11-18/only-apple-haters-can-love-samsung-galaxy-tab-rich-jaroslovsky.html HTTP/1.1
Host: www.bloomberg.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmv=30057196.|3=opt=no-opt=1,; s_sess=%20s_ria%3Dflash%257CSilverlight%25204.0%3B%20s_campaign%3Dcof_2%3B%20s_cc%3Dtrue%3B%20ev1%3Dtv%253Ahome%3B%20s_sq%3D%3B; __utmz=30057196.1290273703.1.1.utmcsr=s0.2mdn.net|utmccn=(referral)|utmcmd=referral|utmcct=/1797755/Coffee_v1_300x250.swf; path_cookie=_news; BT=; oo_int_hit=1; oo_int_percent=0; rsi_segs=; s_vi=[CS]v1|267401DC851D2580-4000012F803267BB[CE]; OAX=rnneEkzoA7IACz4K; __utma=30057196.685584106.1290273703.1290273703.1290273703.1; __utmc=30057196; RMFD=011PJr8MO1021wJe; __utmb=30057196.3.9.1290273791381; opt=no-opt;

Response

HTTP/1.1 200 OK
Server: Sun-Java-System-Web-Server/7.0
ETag: W/"119e9e8409c3eaf5479026ea9bd857b1"
X-runtime: 1277
Content-Type: text/html; charset=utf-8
Proxy-agent: Sun-Java-System-Web-Server/7.0
Cache-Control: private, max-age=1
Date: Sat, 20 Nov 2010 18:21:23 GMT
Connection: close
Connection: Transfer-Encoding
Content-Length: 54868

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN"
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xmlns:og="http://opengraphprotocol.org/sc
...[SNIP]...
<a href="mailto:rjaroslovsky@bloomberg.net" title="Send E-mail">rjaroslovsky@bloomberg.net</a>
...[SNIP]...
<a href="mailto:jgreiff@bloomberg.net" title="Send E-mail">jgreiff@bloomberg.net</a>
...[SNIP]...

6.17. http://www.bloomberg.com/news/2010-11-18/pfizer-bristol-myers-halt-trial-of-experimental-blood-thinner-on-bleeding.html  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.bloomberg.com
Path:   /news/2010-11-18/pfizer-bristol-myers-halt-trial-of-experimental-blood-thinner-on-bleeding.html

Issue detail

The following email addresses were disclosed in the response:

Request

GET /news/2010-11-18/pfizer-bristol-myers-halt-trial-of-experimental-blood-thinner-on-bleeding.html HTTP/1.1
Host: www.bloomberg.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmv=30057196.|3=opt=no-opt=1,; s_sess=%20s_ria%3Dflash%257CSilverlight%25204.0%3B%20s_campaign%3Dcof_2%3B%20s_cc%3Dtrue%3B%20ev1%3Dtv%253Ahome%3B%20s_sq%3D%3B; __utmz=30057196.1290273703.1.1.utmcsr=s0.2mdn.net|utmccn=(referral)|utmcmd=referral|utmcct=/1797755/Coffee_v1_300x250.swf; path_cookie=_news; BT=; oo_int_hit=1; oo_int_percent=0; rsi_segs=; s_vi=[CS]v1|267401DC851D2580-4000012F803267BB[CE]; OAX=rnneEkzoA7IACz4K; __utma=30057196.685584106.1290273703.1290273703.1290273703.1; __utmc=30057196; RMFD=011PJr8MO1021wJe; __utmb=30057196.3.9.1290273791381; opt=no-opt;

Response

HTTP/1.1 200 OK
Server: Sun-Java-System-Web-Server/7.0
ETag: W/"ed674a791a7fa45619ed2aeabf8898a8"
X-runtime: 25
Content-Type: text/html; charset=utf-8
Proxy-agent: Sun-Java-System-Web-Server/7.0
Cache-Control: private, max-age=1
Date: Sat, 20 Nov 2010 18:21:27 GMT
Connection: close
Connection: Transfer-Encoding
Content-Length: 54487

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN"
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xmlns:og="http://opengraphprotocol.org/sc
...[SNIP]...
<a href="mailto:trandall6@bloomberg.net" title="Send E-mail">trandall6@bloomberg.net</a>
...[SNIP]...
<a href="mailto:mcortez@bloomberg.net" title="Send E-mail">mcortez@bloomberg.net</a>
...[SNIP]...
<a href="mailto:rgale5@bloomberg.net" title="Send E-mail">rgale5@bloomberg.net</a>
...[SNIP]...

6.18. http://www.bloomberg.com/news/2010-11-18/surging-food-prices-likely-to-outlast-china-caps-chart-of-the-day.html  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.bloomberg.com
Path:   /news/2010-11-18/surging-food-prices-likely-to-outlast-china-caps-chart-of-the-day.html

Issue detail

The following email addresses were disclosed in the response:

Request

GET /news/2010-11-18/surging-food-prices-likely-to-outlast-china-caps-chart-of-the-day.html HTTP/1.1
Host: www.bloomberg.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmv=30057196.|3=opt=no-opt=1,; s_sess=%20s_ria%3Dflash%257CSilverlight%25204.0%3B%20s_campaign%3Dcof_2%3B%20s_cc%3Dtrue%3B%20ev1%3Dtv%253Ahome%3B%20s_sq%3D%3B; __utmz=30057196.1290273703.1.1.utmcsr=s0.2mdn.net|utmccn=(referral)|utmcmd=referral|utmcct=/1797755/Coffee_v1_300x250.swf; path_cookie=_news; BT=; oo_int_hit=1; oo_int_percent=0; rsi_segs=; s_vi=[CS]v1|267401DC851D2580-4000012F803267BB[CE]; OAX=rnneEkzoA7IACz4K; __utma=30057196.685584106.1290273703.1290273703.1290273703.1; __utmc=30057196; RMFD=011PJr8MO1021wJe; __utmb=30057196.3.9.1290273791381; opt=no-opt;

Response

HTTP/1.1 200 OK
Server: Sun-Java-System-Web-Server/7.0
ETag: W/"6149ff020b312531f1d25fad00006bb6"
X-runtime: 749
Content-Type: text/html; charset=utf-8
Proxy-agent: Sun-Java-System-Web-Server/7.0
Cache-Control: private, max-age=47
Date: Sat, 20 Nov 2010 18:21:23 GMT
Connection: close
Connection: Transfer-Encoding
Content-Length: 49230

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN"
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xmlns:og="http://opengraphprotocol.org/sc
...[SNIP]...
<a href="mailto:dwilson@bloomberg.net" title="Send E-mail">dwilson@bloomberg.net</a>
...[SNIP]...
<a href="mailto:jgreiff@bloomberg.net" title="Send E-mail">jgreiff@bloomberg.net</a>
...[SNIP]...

6.19. http://www.bloomberg.com/news/2010-11-19/-lost-john-osborne-play-returns-angry-young-man-john-simon.html  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.bloomberg.com
Path:   /news/2010-11-19/-lost-john-osborne-play-returns-angry-young-man-john-simon.html

Issue detail

The following email addresses were disclosed in the response:

Request

GET /news/2010-11-19/-lost-john-osborne-play-returns-angry-young-man-john-simon.html HTTP/1.1
Host: www.bloomberg.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmv=30057196.|3=opt=no-opt=1,; s_sess=%20s_ria%3Dflash%257CSilverlight%25204.0%3B%20s_campaign%3Dcof_2%3B%20s_cc%3Dtrue%3B%20ev1%3Dtv%253Ahome%3B%20s_sq%3D%3B; __utmz=30057196.1290273703.1.1.utmcsr=s0.2mdn.net|utmccn=(referral)|utmcmd=referral|utmcct=/1797755/Coffee_v1_300x250.swf; path_cookie=_news; BT=; oo_int_hit=1; oo_int_percent=0; rsi_segs=; s_vi=[CS]v1|267401DC851D2580-4000012F803267BB[CE]; OAX=rnneEkzoA7IACz4K; __utma=30057196.685584106.1290273703.1290273703.1290273703.1; __utmc=30057196; RMFD=011PJr8MO1021wJe; __utmb=30057196.3.9.1290273791381; opt=no-opt;

Response

HTTP/1.1 200 OK
Server: Sun-Java-System-Web-Server/7.0
ETag: W/"ce945cb80290ca5c2d0042db1af2cc90"
X-runtime: 22
Content-Type: text/html; charset=utf-8
Proxy-agent: Sun-Java-System-Web-Server/7.0
Cache-Control: private, max-age=9
Date: Sat, 20 Nov 2010 18:21:00 GMT
Connection: close
Connection: Transfer-Encoding
Content-Length: 52024

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN"
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xmlns:og="http://opengraphprotocol.org/sc
...[SNIP]...
<span>jis1925@aol.com</span>
...[SNIP]...
<a href="mailto: